{"url":"http://public2.vulnerablecode.io/api/packages/547762?format=json","purl":"pkg:composer/remdex/livehelperchat@1.74","type":"composer","namespace":"remdex","name":"livehelperchat","version":"1.74","qualifiers":{},"subpath":"","is_vulnerable":true,"next_non_vulnerable_version":null,"latest_non_vulnerable_version":null,"affected_by_vulnerabilities":[{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42210?format=json","vulnerability_id":"VCID-17uk-63ap-hqeg","summary":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nCross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0375","reference_id":"","reference_type":"","scores":[{"value":"0.00357","scoring_system":"epss","scoring_elements":"0.58258","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00357","scoring_system":"epss","scoring_elements":"0.58232","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00357","scoring_system":"epss","scoring_elements":"0.58247","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00357","scoring_system":"epss","scoring_elements":"0.58201","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00357","scoring_system":"epss","scoring_elements":"0.5825","published_at":"2026-06-09T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0375"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/bbfaa26ce54a2a86ce1a42a16496038f5bdfc102","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/bbfaa26ce54a2a86ce1a42a16496038f5bdfc102"},{"reference_url":"https://huntr.dev/bounties/28e1c356-6eaa-4d93-af56-938e3b4d40a7","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/28e1c356-6eaa-4d93-af56-938e3b4d40a7"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0375","reference_id":"CVE-2022-0375","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0375"},{"reference_url":"https://github.com/advisories/GHSA-x3g3-jh26-76cf","reference_id":"GHSA-x3g3-jh26-76cf","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-x3g3-jh26-76cf"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/60312?format=json","purl":"pkg:composer/remdex/livehelperchat@3.93.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.93.0"}],"aliases":["CVE-2022-0375","GHSA-x3g3-jh26-76cf"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-17uk-63ap-hqeg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/43064?format=json","vulnerability_id":"VCID-42ea-qqnu-6fdg","summary":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nCross-site Scripting (XSS) in GitHub repository livehelperchat/livehelperchat prior to 3.99v. Attacker can execute malicious JS on Application :)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1530","reference_id":"","reference_type":"","scores":[{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44539","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44576","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44562","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44594","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44617","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00219","scoring_system":"epss","scoring_elements":"0.44609","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1530"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/edef7a8387be718d0de2dfd1e722789afb0461bc","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/edef7a8387be718d0de2dfd1e722789afb0461bc"},{"reference_url":"https://huntr.dev/bounties/8fd8de01-7e83-4324-9cc8-a97acb9b70d6","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/8fd8de01-7e83-4324-9cc8-a97acb9b70d6"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1530","reference_id":"CVE-2022-1530","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1530"},{"reference_url":"https://github.com/advisories/GHSA-9hgc-wpc5-v8p9","reference_id":"GHSA-9hgc-wpc5-v8p9","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-9hgc-wpc5-v8p9"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61633?format=json","purl":"pkg:composer/remdex/livehelperchat@3.99.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.99.0"}],"aliases":["CVE-2022-1530","GHSA-9hgc-wpc5-v8p9"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-42ea-qqnu-6fdg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42194?format=json","vulnerability_id":"VCID-6pe5-6bpv-mfec","summary":"livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0231","reference_id":"","reference_type":"","scores":[{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28319","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28271","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28266","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28304","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28345","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00106","scoring_system":"epss","scoring_elements":"0.28392","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0231"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/6ad1349dc5e7503b00c5017499a0a895d7654a61","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/6ad1349dc5e7503b00c5017499a0a895d7654a61"},{"reference_url":"https://huntr.dev/bounties/adaf98cf-60ab-40e0-aa3b-42ba0d3b7cbf","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/adaf98cf-60ab-40e0-aa3b-42ba0d3b7cbf"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0231","reference_id":"CVE-2022-0231","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0231"},{"reference_url":"https://github.com/advisories/GHSA-8m28-w6xg-35hw","reference_id":"GHSA-8m28-w6xg-35hw","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-8m28-w6xg-35hw"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/60210?format=json","purl":"pkg:composer/remdex/livehelperchat@3.92.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.92.0"}],"aliases":["CVE-2022-0231","GHSA-8m28-w6xg-35hw"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-6pe5-6bpv-mfec"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/41846?format=json","vulnerability_id":"VCID-82g3-pj11-e7ae","summary":"livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4049","reference_id":"","reference_type":"","scores":[{"value":"0.00111","scoring_system":"epss","scoring_elements":"0.29241","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00111","scoring_system":"epss","scoring_elements":"0.29151","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00111","scoring_system":"epss","scoring_elements":"0.29139","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00111","scoring_system":"epss","scoring_elements":"0.29172","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00111","scoring_system":"epss","scoring_elements":"0.2917","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00111","scoring_system":"epss","scoring_elements":"0.29208","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4049"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/e7fe1aa6a087d4d21b2e8a0dadd2e08f42acbb57","reference_id":"","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/e7fe1aa6a087d4d21b2e8a0dadd2e08f42acbb57"},{"reference_url":"https://huntr.dev/bounties/62408fa4-2c16-4fcd-8b34-41fcdccb779e","reference_id":"","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/62408fa4-2c16-4fcd-8b34-41fcdccb779e"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4049","reference_id":"CVE-2021-4049","reference_type":"","scores":[{"value":"LOW","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4049"},{"reference_url":"https://github.com/advisories/GHSA-h86j-6h6m-qjqw","reference_id":"GHSA-h86j-6h6m-qjqw","reference_type":"","scores":[{"value":"LOW","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-h86j-6h6m-qjqw"}],"fixed_packages":[],"aliases":["CVE-2021-4049","GHSA-h86j-6h6m-qjqw"],"risk_score":1.4,"exploitability":"0.5","weighted_severity":"2.7","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-82g3-pj11-e7ae"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42127?format=json","vulnerability_id":"VCID-878d-udsq-9qbu","summary":"livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0253","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52596","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52662","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52655","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52641","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52618","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52644","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0253"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/407d0b1a1fa56fa6f824a19092774f10f4880437","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/407d0b1a1fa56fa6f824a19092774f10f4880437"},{"reference_url":"https://huntr.dev/bounties/ac7f7eba-ee0b-4a50-bd89-29fd9b3e8303","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/ac7f7eba-ee0b-4a50-bd89-29fd9b3e8303"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0253","reference_id":"CVE-2022-0253","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0253"},{"reference_url":"https://github.com/advisories/GHSA-5r9v-8w62-r26j","reference_id":"GHSA-5r9v-8w62-r26j","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5r9v-8w62-r26j"}],"fixed_packages":[],"aliases":["CVE-2022-0253","GHSA-5r9v-8w62-r26j"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-878d-udsq-9qbu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42820?format=json","vulnerability_id":"VCID-9cw7-ep1d-6bcr","summary":"Access of Resource Using Incompatible Type ('Type Confusion')\nLoose comparison causes IDOR on multiple endpoints in GitHub repository livehelperchat/livehelperchat prior to 3.96.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1176","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52614","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52659","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52635","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52662","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.5268","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52673","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1176"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/72c0df160bfe9838c618652facef29af99392ce3","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/72c0df160bfe9838c618652facef29af99392ce3"},{"reference_url":"https://huntr.dev/bounties/3e30171b-c9bf-415c-82f1-6f55a44d09d3","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/3e30171b-c9bf-415c-82f1-6f55a44d09d3"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1176","reference_id":"CVE-2022-1176","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1176"},{"reference_url":"https://github.com/advisories/GHSA-5cmw-fhq9-8fhh","reference_id":"GHSA-5cmw-fhq9-8fhh","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-5cmw-fhq9-8fhh"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61214?format=json","purl":"pkg:composer/remdex/livehelperchat@3.96.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.96.0"}],"aliases":["CVE-2022-1176","GHSA-5cmw-fhq9-8fhh"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-9cw7-ep1d-6bcr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42859?format=json","vulnerability_id":"VCID-abqf-z58q-rbew","summary":"Server-Side Request Forgery (SSRF)\nSSRF filter bypass port 80, 433 in GitHub repository livehelperchat/livehelperchat prior to 3.67v. An attacker could make the application perform arbitrary requests, bypass CVE-2022-1191","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1213","reference_id":"","reference_type":"","scores":[{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32489","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.3244","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32418","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.3245","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32449","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00133","scoring_system":"epss","scoring_elements":"0.32521","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1213"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/abc9599ee7aded466ca216741dcaea533c908111","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/abc9599ee7aded466ca216741dcaea533c908111"},{"reference_url":"https://github.com/LiveHelperChat/livehelperchat/issues/1752","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/LiveHelperChat/livehelperchat/issues/1752"},{"reference_url":"https://huntr.dev/bounties/084387f6-5b9c-4017-baa2-5fcf65b051e1","reference_id":"","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/084387f6-5b9c-4017-baa2-5fcf65b051e1"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1213","reference_id":"CVE-2022-1213","reference_type":"","scores":[{"value":"7.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1213"},{"reference_url":"https://github.com/advisories/GHSA-hhr9-7xvh-8xgc","reference_id":"GHSA-hhr9-7xvh-8xgc","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-hhr9-7xvh-8xgc"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61277?format=json","purl":"pkg:composer/remdex/livehelperchat@3.67.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.67.0"}],"aliases":["CVE-2022-1213","GHSA-hhr9-7xvh-8xgc"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-abqf-z58q-rbew"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/41962?format=json","vulnerability_id":"VCID-ba2a-eze4-8yet","summary":"livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4132","reference_id":"","reference_type":"","scores":[{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.40199","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.4024","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.40226","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.40255","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.40283","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00186","scoring_system":"epss","scoring_elements":"0.4028","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4132"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/55b1e3bf62c564db7c919f5293ec1e755c2958d6","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/55b1e3bf62c564db7c919f5293ec1e755c2958d6"},{"reference_url":"https://huntr.dev/bounties/7eb80e7c-bb7a-478d-9760-0ea2fa9dc0c2","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/7eb80e7c-bb7a-478d-9760-0ea2fa9dc0c2"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4132","reference_id":"CVE-2021-4132","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4132"},{"reference_url":"https://github.com/advisories/GHSA-f7xw-46vh-5jw2","reference_id":"GHSA-f7xw-46vh-5jw2","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-f7xw-46vh-5jw2"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/59978?format=json","purl":"pkg:composer/remdex/livehelperchat@3.91.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-878d-udsq-9qbu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.91.0"}],"aliases":["CVE-2021-4132","GHSA-f7xw-46vh-5jw2"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ba2a-eze4-8yet"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42186?format=json","vulnerability_id":"VCID-cz92-93kh-juhy","summary":"livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0226","reference_id":"","reference_type":"","scores":[{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.30084","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.30121","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.30157","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.30074","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.3006","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00117","scoring_system":"epss","scoring_elements":"0.30089","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0226"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/f59ffb02984c0ce2fbb19ac39365066507de9370","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/f59ffb02984c0ce2fbb19ac39365066507de9370"},{"reference_url":"https://huntr.dev/bounties/635d0abf-7680-47f6-a277-d9a91471c73f","reference_id":"","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/635d0abf-7680-47f6-a277-d9a91471c73f"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0226","reference_id":"CVE-2022-0226","reference_type":"","scores":[{"value":"4.3","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0226"},{"reference_url":"https://github.com/advisories/GHSA-6jmh-9gqm-5xrx","reference_id":"GHSA-6jmh-9gqm-5xrx","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-6jmh-9gqm-5xrx"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/60210?format=json","purl":"pkg:composer/remdex/livehelperchat@3.92.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.92.0"}],"aliases":["CVE-2022-0226","GHSA-6jmh-9gqm-5xrx"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-cz92-93kh-juhy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42468?format=json","vulnerability_id":"VCID-fa8e-zrgs-bba4","summary":"Improper Neutralization of Input During Web Page Generation (`Cross-site Scripting`)\nStored Cross-site Scripting (XSS) in versions prior to v3.93.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0612","reference_id":"","reference_type":"","scores":[{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55589","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55557","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55576","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55527","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00322","scoring_system":"epss","scoring_elements":"0.55583","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0612"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/4d4f1db1701f09177896a38e43fd0c693835f03b","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/4d4f1db1701f09177896a38e43fd0c693835f03b"},{"reference_url":"https://huntr.dev/bounties/eadcf7d2-a479-4901-abcc-1505d3f1b32f","reference_id":"","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/eadcf7d2-a479-4901-abcc-1505d3f1b32f"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0612","reference_id":"CVE-2022-0612","reference_type":"","scores":[{"value":"6.7","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:L"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0612"},{"reference_url":"https://github.com/advisories/GHSA-h2fj-77wh-fh5w","reference_id":"GHSA-h2fj-77wh-fh5w","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-h2fj-77wh-fh5w"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/60312?format=json","purl":"pkg:composer/remdex/livehelperchat@3.93.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.93.0"}],"aliases":["CVE-2022-0612","GHSA-h2fj-77wh-fh5w"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-fa8e-zrgs-bba4"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42224?format=json","vulnerability_id":"VCID-ftcp-312b-rqeg","summary":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nCross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0374","reference_id":"","reference_type":"","scores":[{"value":"0.00267","scoring_system":"epss","scoring_elements":"0.50399","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00267","scoring_system":"epss","scoring_elements":"0.50436","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00267","scoring_system":"epss","scoring_elements":"0.50418","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00267","scoring_system":"epss","scoring_elements":"0.50448","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00267","scoring_system":"epss","scoring_elements":"0.50467","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00267","scoring_system":"epss","scoring_elements":"0.5046","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0374"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/bbfaa26ce54a2a86ce1a42a16496038f5bdfc102","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/bbfaa26ce54a2a86ce1a42a16496038f5bdfc102"},{"reference_url":"https://huntr.dev/bounties/f8b560a6-aa19-4262-8ae4-cf88204310ef","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/f8b560a6-aa19-4262-8ae4-cf88204310ef"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0374","reference_id":"CVE-2022-0374","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0374"},{"reference_url":"https://github.com/advisories/GHSA-59qh-g7m4-j9m9","reference_id":"GHSA-59qh-g7m4-j9m9","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-59qh-g7m4-j9m9"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/60312?format=json","purl":"pkg:composer/remdex/livehelperchat@3.93.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.93.0"}],"aliases":["CVE-2022-0374","GHSA-59qh-g7m4-j9m9"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ftcp-312b-rqeg"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42219?format=json","vulnerability_id":"VCID-hwq9-trr2-vqft","summary":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nCross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0370","reference_id":"","reference_type":"","scores":[{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52596","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52662","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52655","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52641","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52618","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00289","scoring_system":"epss","scoring_elements":"0.52644","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0370"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/9f5bc33c943349bd765b991db0b7f6b6ef05cfdb","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/9f5bc33c943349bd765b991db0b7f6b6ef05cfdb"},{"reference_url":"https://huntr.dev/bounties/fbe4b376-57ce-42cd-a9a9-049c4099b3ca","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/fbe4b376-57ce-42cd-a9a9-049c4099b3ca"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0370","reference_id":"CVE-2022-0370","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0370"},{"reference_url":"https://github.com/advisories/GHSA-8wcc-f2vq-h4gx","reference_id":"GHSA-8wcc-f2vq-h4gx","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-8wcc-f2vq-h4gx"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/60312?format=json","purl":"pkg:composer/remdex/livehelperchat@3.93.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.93.0"}],"aliases":["CVE-2022-0370","GHSA-8wcc-f2vq-h4gx"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-hwq9-trr2-vqft"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/41963?format=json","vulnerability_id":"VCID-j2fn-m5zh-p3e5","summary":"livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4131","reference_id":"","reference_type":"","scores":[{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34444","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.345","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.3448","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34522","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34557","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00144","scoring_system":"epss","scoring_elements":"0.34541","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4131"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/3b5d0a8a43595a7f05f2a81b76623a8d7e5ad19f","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/3b5d0a8a43595a7f05f2a81b76623a8d7e5ad19f"},{"reference_url":"https://huntr.dev/bounties/52dfac87-4fd3-4dfb-83d2-d39916764d43","reference_id":"","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/52dfac87-4fd3-4dfb-83d2-d39916764d43"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4131","reference_id":"CVE-2021-4131","reference_type":"","scores":[{"value":"8.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4131"},{"reference_url":"https://github.com/advisories/GHSA-hx77-5p88-f92r","reference_id":"GHSA-hx77-5p88-f92r","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-hx77-5p88-f92r"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/59978?format=json","purl":"pkg:composer/remdex/livehelperchat@3.91.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-878d-udsq-9qbu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.91.0"}],"aliases":["CVE-2021-4131","GHSA-hx77-5p88-f92r"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-j2fn-m5zh-p3e5"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42263?format=json","vulnerability_id":"VCID-ns73-6u4d-6ucn","summary":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nCross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0502","reference_id":"","reference_type":"","scores":[{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59469","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59523","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59519","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59513","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59495","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59514","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0502"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/d3b107aaa8ec10816acc762d60e7321079c21706","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/d3b107aaa8ec10816acc762d60e7321079c21706"},{"reference_url":"https://huntr.dev/bounties/34f2aa30-de7f-432a-8749-b43d2774140f","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/34f2aa30-de7f-432a-8749-b43d2774140f"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0502","reference_id":"CVE-2022-0502","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0502"},{"reference_url":"https://github.com/advisories/GHSA-57qf-82hh-2hmc","reference_id":"GHSA-57qf-82hh-2hmc","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-57qf-82hh-2hmc"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/60312?format=json","purl":"pkg:composer/remdex/livehelperchat@3.93.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.93.0"}],"aliases":["CVE-2022-0502","GHSA-57qf-82hh-2hmc"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ns73-6u4d-6ucn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/41847?format=json","vulnerability_id":"VCID-nxnb-3mhc-4qcr","summary":"livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4050","reference_id":"","reference_type":"","scores":[{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55667","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55616","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55673","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55678","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55666","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00323","scoring_system":"epss","scoring_elements":"0.55648","published_at":"2026-06-08T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4050"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/0ce1dd2a13509747c240c8484228a5df8d6e03ec","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/0ce1dd2a13509747c240c8484228a5df8d6e03ec"},{"reference_url":"https://huntr.dev/bounties/27eb39d7-7636-4c4b-922c-a2f8fbe1ba05","reference_id":"","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/27eb39d7-7636-4c4b-922c-a2f8fbe1ba05"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4050","reference_id":"CVE-2021-4050","reference_type":"","scores":[{"value":"6.1","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4050"},{"reference_url":"https://github.com/advisories/GHSA-97cc-825c-399g","reference_id":"GHSA-97cc-825c-399g","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-97cc-825c-399g"}],"fixed_packages":[],"aliases":["CVE-2021-4050","GHSA-97cc-825c-399g"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-nxnb-3mhc-4qcr"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/47161?format=json","vulnerability_id":"VCID-s7bs-pc14-dkfn","summary":"livehelperchat Server-Side Template Injection\nlivehelperchat 4.28v is vulnerable to Server-Side Template Injection (SSTI).","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2024-27516","reference_id":"","reference_type":"","scores":[{"value":"0.03183","scoring_system":"epss","scoring_elements":"0.87226","published_at":"2026-06-05T12:55:00Z"},{"value":"0.03183","scoring_system":"epss","scoring_elements":"0.87229","published_at":"2026-06-09T12:55:00Z"},{"value":"0.03183","scoring_system":"epss","scoring_elements":"0.87217","published_at":"2026-06-08T12:55:00Z"},{"value":"0.03183","scoring_system":"epss","scoring_elements":"0.87221","published_at":"2026-06-07T12:55:00Z"},{"value":"0.03183","scoring_system":"epss","scoring_elements":"0.87224","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2024-27516"},{"reference_url":"https://github.com/LiveHelperChat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/LiveHelperChat/livehelperchat"},{"reference_url":"https://github.com/LiveHelperChat/livehelperchat/commit/a61d231526a36d4a7d8cc957914799ee1f9db0ab","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-06-03T19:12:43Z/"}],"url":"https://github.com/LiveHelperChat/livehelperchat/commit/a61d231526a36d4a7d8cc957914799ee1f9db0ab"},{"reference_url":"https://github.com/LiveHelperChat/livehelperchat/issues/2054","reference_id":"","reference_type":"","scores":[{"value":"9.8","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track*","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:P/A:Y/T:T/P:M/B:A/M:M/D:R/2024-06-03T19:12:43Z/"}],"url":"https://github.com/LiveHelperChat/livehelperchat/issues/2054"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2024-27516","reference_id":"CVE-2024-27516","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2024-27516"},{"reference_url":"https://github.com/advisories/GHSA-v4cp-2q7v-hg9q","reference_id":"GHSA-v4cp-2q7v-hg9q","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-v4cp-2q7v-hg9q"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/69203?format=json","purl":"pkg:composer/remdex/livehelperchat@4.29.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@4.29.0"}],"aliases":["CVE-2024-27516","GHSA-v4cp-2q7v-hg9q"],"risk_score":4.4,"exploitability":"0.5","weighted_severity":"8.8","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-s7bs-pc14-dkfn"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42231?format=json","vulnerability_id":"VCID-sxaq-cua6-qqd6","summary":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nCross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0394","reference_id":"","reference_type":"","scores":[{"value":"0.00261","scoring_system":"epss","scoring_elements":"0.49719","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00261","scoring_system":"epss","scoring_elements":"0.49793","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00261","scoring_system":"epss","scoring_elements":"0.49783","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00261","scoring_system":"epss","scoring_elements":"0.49762","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00261","scoring_system":"epss","scoring_elements":"0.49745","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00261","scoring_system":"epss","scoring_elements":"0.49775","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0394"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/d7b85466c217b3750eaccc8703ce54ba8785c4d3","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:00:44Z/"}],"url":"https://github.com/livehelperchat/livehelperchat/commit/d7b85466c217b3750eaccc8703ce54ba8785c4d3"},{"reference_url":"https://huntr.dev/bounties/e13823d0-271c-448b-a0c5-8549ea7ea272","reference_id":"","reference_type":"","scores":[{"value":"5.3","scoring_system":"cvssv3","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N"},{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""},{"value":"Track","scoring_system":"ssvc","scoring_elements":"SSVCv2/E:N/A:N/T:P/P:M/B:A/M:M/D:T/2025-06-09T15:00:44Z/"}],"url":"https://huntr.dev/bounties/e13823d0-271c-448b-a0c5-8549ea7ea272"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0394","reference_id":"CVE-2022-0394","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0394"},{"reference_url":"https://github.com/advisories/GHSA-vwxp-9qmf-w299","reference_id":"GHSA-vwxp-9qmf-w299","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-vwxp-9qmf-w299"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/60312?format=json","purl":"pkg:composer/remdex/livehelperchat@3.93.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.93.0"}],"aliases":["CVE-2022-0394","GHSA-vwxp-9qmf-w299"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-sxaq-cua6-qqd6"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/41912?format=json","vulnerability_id":"VCID-t2d4-9utc-hkaj","summary":"livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4123","reference_id":"","reference_type":"","scores":[{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26856","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26811","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26803","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26801","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26904","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00097","scoring_system":"epss","scoring_elements":"0.26895","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2021-4123"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/2a98c69cf8899afb9a76d737527abb1dd96fa106","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/2a98c69cf8899afb9a76d737527abb1dd96fa106"},{"reference_url":"https://huntr.dev/bounties/52182545-fdd6-4d4f-9fba-25010f7f8cba","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/52182545-fdd6-4d4f-9fba-25010f7f8cba"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4123","reference_id":"CVE-2021-4123","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2021-4123"},{"reference_url":"https://github.com/advisories/GHSA-rpg7-q4cv-p466","reference_id":"GHSA-rpg7-q4cv-p466","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-rpg7-q4cv-p466"}],"fixed_packages":[],"aliases":["CVE-2021-4123","GHSA-rpg7-q4cv-p466"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-t2d4-9utc-hkaj"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42128?format=json","vulnerability_id":"VCID-uman-ppap-x3cv","summary":"Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to 3.92v.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0266","reference_id":"","reference_type":"","scores":[{"value":"0.00303","scoring_system":"epss","scoring_elements":"0.53953","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00303","scoring_system":"epss","scoring_elements":"0.53966","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00303","scoring_system":"epss","scoring_elements":"0.53958","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00303","scoring_system":"epss","scoring_elements":"0.53931","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00303","scoring_system":"epss","scoring_elements":"0.539","published_at":"2026-06-04T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0266"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/cc1122aed0d1ad9f05757eaea2ab9e6a924776bd","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/cc1122aed0d1ad9f05757eaea2ab9e6a924776bd"},{"reference_url":"https://huntr.dev/bounties/1ac267be-3af8-4774-89f2-77234d144d6b","reference_id":"","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/1ac267be-3af8-4774-89f2-77234d144d6b"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0266","reference_id":"CVE-2022-0266","reference_type":"","scores":[{"value":"6.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0266"},{"reference_url":"https://github.com/advisories/GHSA-c7fm-jx59-wjf6","reference_id":"GHSA-c7fm-jx59-wjf6","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-c7fm-jx59-wjf6"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/60210?format=json","purl":"pkg:composer/remdex/livehelperchat@3.92.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.92.0"}],"aliases":["CVE-2022-0266","GHSA-c7fm-jx59-wjf6"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-uman-ppap-x3cv"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42856?format=json","vulnerability_id":"VCID-vhzd-49sk-1bgy","summary":"Use of Password Hash With Insufficient Computational Effort\nWeak secrethash can be brute-forced in GitHub repository livehelperchat/livehelperchat prior to 3.96.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1235","reference_id":"","reference_type":"","scores":[{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26567","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26573","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26566","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26621","published_at":"2026-06-07T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.2666","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00096","scoring_system":"epss","scoring_elements":"0.26669","published_at":"2026-06-05T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-1235"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/6538d6df3d8a60fee254170b08dd76a161f7bfdc","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/6538d6df3d8a60fee254170b08dd76a161f7bfdc"},{"reference_url":"https://huntr.dev/bounties/92f7b2d4-fa88-4c62-a2ee-721eebe01705","reference_id":"","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/92f7b2d4-fa88-4c62-a2ee-721eebe01705"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1235","reference_id":"CVE-2022-1235","reference_type":"","scores":[{"value":"7.5","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N"},{"value":"HIGH","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-1235"},{"reference_url":"https://github.com/advisories/GHSA-vx8v-g3p3-88vg","reference_id":"GHSA-vx8v-g3p3-88vg","reference_type":"","scores":[{"value":"HIGH","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-vx8v-g3p3-88vg"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/61214?format=json","purl":"pkg:composer/remdex/livehelperchat@3.96.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.96.0"}],"aliases":["CVE-2022-1235","GHSA-vx8v-g3p3-88vg"],"risk_score":4.0,"exploitability":"0.5","weighted_severity":"8.0","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-vhzd-49sk-1bgy"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42225?format=json","vulnerability_id":"VCID-ya8m-h2vp-cyhx","summary":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nCross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0395","reference_id":"","reference_type":"","scores":[{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59469","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59523","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59519","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59513","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59495","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00376","scoring_system":"epss","scoring_elements":"0.59514","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0395"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/8fdb4f67ac1a095331aa0fb4630ef9dfe8e75dcb","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/8fdb4f67ac1a095331aa0fb4630ef9dfe8e75dcb"},{"reference_url":"https://huntr.dev/bounties/36abbd6e-239e-4739-8c77-ba212b946a4a","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/36abbd6e-239e-4739-8c77-ba212b946a4a"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0395","reference_id":"CVE-2022-0395","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0395"},{"reference_url":"https://github.com/advisories/GHSA-54qq-9chj-rxhv","reference_id":"GHSA-54qq-9chj-rxhv","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-54qq-9chj-rxhv"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/60312?format=json","purl":"pkg:composer/remdex/livehelperchat@3.93.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.93.0"}],"aliases":["CVE-2022-0395","GHSA-54qq-9chj-rxhv"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-ya8m-h2vp-cyhx"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42223?format=json","vulnerability_id":"VCID-zjz7-5jt1-x7bu","summary":"Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')\nCross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0387","reference_id":"","reference_type":"","scores":[{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.5175","published_at":"2026-06-04T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51819","published_at":"2026-06-06T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51809","published_at":"2026-06-05T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51784","published_at":"2026-06-09T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51766","published_at":"2026-06-08T12:55:00Z"},{"value":"0.00281","scoring_system":"epss","scoring_elements":"0.51797","published_at":"2026-06-07T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0387"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/ff70c7dd641b68b9afb170b89ec1ef003a4e3444","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/ff70c7dd641b68b9afb170b89ec1ef003a4e3444"},{"reference_url":"https://huntr.dev/bounties/2e09035b-8f98-4930-b7e8-7abe5f722b98","reference_id":"","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/2e09035b-8f98-4930-b7e8-7abe5f722b98"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0387","reference_id":"CVE-2022-0387","reference_type":"","scores":[{"value":"5.4","scoring_system":"cvssv3.1","scoring_elements":"CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N"},{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0387"},{"reference_url":"https://github.com/advisories/GHSA-w4hp-pcp8-qhf3","reference_id":"GHSA-w4hp-pcp8-qhf3","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-w4hp-pcp8-qhf3"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/60312?format=json","purl":"pkg:composer/remdex/livehelperchat@3.93.0","is_vulnerable":false,"affected_by_vulnerabilities":[],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.93.0"}],"aliases":["CVE-2022-0387","GHSA-w4hp-pcp8-qhf3"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zjz7-5jt1-x7bu"},{"url":"http://public2.vulnerablecode.io/api/vulnerabilities/42149?format=json","vulnerability_id":"VCID-zutz-nagz-w3fz","summary":"livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information","references":[{"reference_url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0083","reference_id":"","reference_type":"","scores":[{"value":"0.0021","scoring_system":"epss","scoring_elements":"0.43507","published_at":"2026-06-05T12:55:00Z"},{"value":"0.0021","scoring_system":"epss","scoring_elements":"0.43469","published_at":"2026-06-09T12:55:00Z"},{"value":"0.0021","scoring_system":"epss","scoring_elements":"0.43461","published_at":"2026-06-08T12:55:00Z"},{"value":"0.0021","scoring_system":"epss","scoring_elements":"0.43494","published_at":"2026-06-07T12:55:00Z"},{"value":"0.0021","scoring_system":"epss","scoring_elements":"0.43436","published_at":"2026-06-04T12:55:00Z"},{"value":"0.0021","scoring_system":"epss","scoring_elements":"0.43518","published_at":"2026-06-06T12:55:00Z"}],"url":"https://api.first.org/data/v1/epss?cve=CVE-2022-0083"},{"reference_url":"https://github.com/livehelperchat/livehelperchat","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat"},{"reference_url":"https://github.com/livehelperchat/livehelperchat/commit/fbed8728be59040a7218610e72f6eceb5f8bc152","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://github.com/livehelperchat/livehelperchat/commit/fbed8728be59040a7218610e72f6eceb5f8bc152"},{"reference_url":"https://huntr.dev/bounties/4c477440-3b03-42eb-a6e2-a31b55090736","reference_id":"","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://huntr.dev/bounties/4c477440-3b03-42eb-a6e2-a31b55090736"},{"reference_url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0083","reference_id":"CVE-2022-0083","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"generic_textual","scoring_elements":""}],"url":"https://nvd.nist.gov/vuln/detail/CVE-2022-0083"},{"reference_url":"https://github.com/advisories/GHSA-4xww-6h7v-29jg","reference_id":"GHSA-4xww-6h7v-29jg","reference_type":"","scores":[{"value":"MODERATE","scoring_system":"cvssv3.1_qr","scoring_elements":""}],"url":"https://github.com/advisories/GHSA-4xww-6h7v-29jg"}],"fixed_packages":[{"url":"http://public2.vulnerablecode.io/api/packages/59978?format=json","purl":"pkg:composer/remdex/livehelperchat@3.91.0","is_vulnerable":true,"affected_by_vulnerabilities":[{"vulnerability":"VCID-878d-udsq-9qbu"}],"resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@3.91.0"}],"aliases":["CVE-2022-0083","GHSA-4xww-6h7v-29jg"],"risk_score":3.1,"exploitability":"0.5","weighted_severity":"6.2","resource_url":"http://public2.vulnerablecode.io/vulnerabilities/VCID-zutz-nagz-w3fz"}],"fixing_vulnerabilities":[],"risk_score":"4.4","resource_url":"http://public2.vulnerablecode.io/packages/pkg:composer/remdex/livehelperchat@1.74"}