Moderate severityNVD Advisory· Published Dec 17, 2021· Updated Aug 3, 2024
Cross-site Scripting (XSS) - Stored in livehelperchat/livehelperchat
CVE-2021-4132
Description
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected packages
Versions sourced from the GitHub Security Advisory.
| Package | Affected versions | Patched versions |
|---|---|---|
remdex/livehelperchatPackagist | < 3.91 | 3.91 |
Affected products
3- osv-coords2 versions
< 3.90.0+ 1 more
- (no CPE)range: < 3.90.0
- (no CPE)range: < 3.91
- Range: unspecified
Patches
Vulnerability mechanics
References
4- github.com/advisories/GHSA-f7xw-46vh-5jw2ghsaADVISORY
- nvd.nist.gov/vuln/detail/CVE-2021-4132ghsaADVISORY
- github.com/livehelperchat/livehelperchat/commit/55b1e3bf62c564db7c919f5293ec1e755c2958d6ghsax_refsource_MISCWEB
- huntr.dev/bounties/7eb80e7c-bb7a-478d-9760-0ea2fa9dc0c2ghsax_refsource_CONFIRMWEB
News mentions
0No linked articles in our index yet.