CVE-2021-4050

Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat

CVSS 6.1 MEDIUMEPSS 0.9%CWE-79

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N

Affected products

livehelperchat · livehelperchat/livehelperchat

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/livehelperchat/livehelperchat/commit/0ce1dd2a13509747c240c8484228a5df8d6e03ec https://huntr.dev/bounties/27eb39d7-7636-4c4b-922c-a2f8fbe1ba05