livehelperchat CVE Vulnerabilities & Metrics

Focus on livehelperchat vulnerabilities and metrics.

Last updated: 08 Mar 2025, 23:25 UTC

About livehelperchat Security Exposure

This page consolidates all known Common Vulnerabilities and Exposures (CVEs) associated with livehelperchat. We track both calendar-based metrics (using fixed periods) and rolling metrics (using gliding windows) to give you a comprehensive view of security trends and risk evolution. Use these insights to assess risk and plan your patching strategy.

For a broader perspective on cybersecurity threats, explore the comprehensive list of CVEs by vendor and product. Stay updated on critical vulnerabilities affecting major software and hardware providers.

Global CVE Overview

Total livehelperchat CVEs: 30
Earliest CVE date: 17 Jul 2017, 13:18 UTC
Latest CVE date: 29 Apr 2022, 09:15 UTC

Latest CVE reference: CVE-2022-1530

Rolling Stats

30-day Count (Rolling): 0
365-day Count (Rolling): 0

Calendar-based Variation

Calendar-based Variation compares a fixed calendar period (e.g., this month versus the same month last year), while Rolling Growth Rate uses a continuous window (e.g., last 30 days versus the previous 30 days) to capture trends independent of calendar boundaries.

Variations & Growth

Month Variation (Calendar): 0%
Year Variation (Calendar): 0%

Month Growth Rate (30-day Rolling): 0.0%
Year Growth Rate (365-day Rolling): 0.0%

Monthly CVE Trends (current vs previous Year)

Annual CVE Trends (Last 20 Years)

Critical livehelperchat CVEs (CVSS ≥ 9) Over 20 Years

CVSS Stats

Average CVSS: 4.5

Max CVSS: 6.8

Critical CVEs (≥9): 0

CVSS Range vs. Count

Range Count
0.0-3.9 9
4.0-6.9 21
7.0-8.9 0
9.0-10.0 0

CVSS Distribution Chart

Top 5 Highest CVSS livehelperchat CVEs

These are the five CVEs with the highest CVSS scores for livehelperchat, sorted by severity first and recency.

All CVEs for livehelperchat

CVE-2022-1530 livehelperchat vulnerability CVSS: 4.3 29 Apr 2022, 09:15 UTC

Cross-site Scripting (XSS) in GitHub repository livehelperchat/livehelperchat prior to 3.99v. The attacker can execute malicious JavaScript on the application.

CVE-2022-0935 livehelperchat vulnerability CVSS: 6.8 07 Apr 2022, 19:15 UTC

Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97.

CVE-2022-1234 livehelperchat vulnerability CVSS: 4.3 06 Apr 2022, 04:15 UTC

XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat prior to 3.97. This vulnerability has the potential to deface websites, result in compromised user accounts, and can run malicious code on web pages, which can lead to a compromise of the user’s device.

CVE-2022-1235 livehelperchat vulnerability CVSS: 6.4 05 Apr 2022, 07:15 UTC

Weak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to 3.96.

CVE-2022-1213 livehelperchat vulnerability CVSS: 5.5 05 Apr 2022, 04:15 UTC

SSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191

CVE-2022-1176 livehelperchat vulnerability CVSS: 5.0 31 Mar 2022, 10:15 UTC

Loose comparison causes IDOR on multiple endpoints in GitHub repository livehelperchat/livehelperchat prior to 3.96.

CVE-2022-1191 livehelperchat vulnerability CVSS: 5.5 31 Mar 2022, 09:15 UTC

SSRF on index.php/cobrowse/proxycss/ in GitHub repository livehelperchat/livehelperchat prior to 3.96.

CVE-2022-0612 livehelperchat vulnerability CVSS: 3.5 16 Feb 2022, 06:15 UTC

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

CVE-2022-0502 livehelperchat vulnerability CVSS: 3.5 06 Feb 2022, 11:15 UTC

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

CVE-2022-0395 livehelperchat vulnerability CVSS: 3.5 28 Jan 2022, 22:15 UTC

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

CVE-2022-0394 livehelperchat vulnerability CVSS: 3.5 28 Jan 2022, 11:15 UTC

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

CVE-2022-0375 livehelperchat vulnerability CVSS: 3.5 26 Jan 2022, 10:15 UTC

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

CVE-2022-0374 livehelperchat vulnerability CVSS: 3.5 26 Jan 2022, 10:15 UTC

Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.

CVE-2022-0266 livehelperchat vulnerability CVSS: 6.0 19 Jan 2022, 06:15 UTC

Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to 3.92v.

CVE-2022-0226 livehelperchat vulnerability CVSS: 4.3 14 Jan 2022, 19:15 UTC

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2022-0231 livehelperchat vulnerability CVSS: 4.3 14 Jan 2022, 12:15 UTC

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2022-0083 livehelperchat vulnerability CVSS: 5.0 04 Jan 2022, 07:15 UTC

livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information

CVE-2021-4176 livehelperchat vulnerability CVSS: 4.3 29 Dec 2021, 15:15 UTC

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2021-4175 livehelperchat vulnerability CVSS: 3.5 29 Dec 2021, 15:15 UTC

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2021-4179 livehelperchat vulnerability CVSS: 3.5 28 Dec 2021, 09:15 UTC

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2021-4177 livehelperchat vulnerability CVSS: 5.0 28 Dec 2021, 06:15 UTC

livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information

CVE-2021-4169 livehelperchat vulnerability CVSS: 4.3 26 Dec 2021, 12:15 UTC

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2021-4131 livehelperchat vulnerability CVSS: 6.8 18 Dec 2021, 07:15 UTC

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2021-4132 livehelperchat vulnerability CVSS: 3.5 17 Dec 2021, 13:15 UTC

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2021-4123 livehelperchat vulnerability CVSS: 4.3 16 Dec 2021, 10:15 UTC

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2021-4050 livehelperchat vulnerability CVSS: 4.3 08 Dec 2021, 11:15 UTC

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2021-4049 livehelperchat vulnerability CVSS: 4.3 07 Dec 2021, 11:15 UTC

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

CVE-2020-26135 livehelperchat vulnerability CVSS: 4.3 02 Oct 2020, 09:15 UTC

Live Helper Chat before 3.44v allows reflected XSS via the setsettingajax PATH_INFO.

CVE-2020-26134 livehelperchat vulnerability CVSS: 4.3 02 Oct 2020, 09:15 UTC

Live Helper Chat before 3.44v allows stored XSS in chat messages with an operator via BBCode.

CVE-2017-1000059 livehelperchat vulnerability CVSS: 4.3 17 Jul 2017, 13:18 UTC

Live Helper Chat version 2.06v and older is vulnerable to Cross-Site Scripting in the HTTP Header handling resulting in the execution of any user provided Javascript code in the session of other users.