Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 186 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-5740 Live Chat with Facebook Messenger <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode ninjateamLive Chat with Facebook Messenger Medium 6.4 2023-10-24 13:53:01 Deep Dive
CVE-2023-41669 WordPress Live News Plugin <= 1.06 is vulnerable to Cross Site Request Forgery (CSRF) DAEXTLive News Medium 4.3 2023-10-09 18:10:34 Deep Dive
CVE-2023-30876 WordPress Dave's WordPress Live Search Plugin <= 4.8.1 is vulnerable to Cross Site Scripting (XSS) Dave RossDave's WordPress Live Search Medium 5.9 2023-08-17 08:09:00 Deep Dive
CVE-2021-4337 Multiple XforWooCommerce Add-On Plugins (Various Versions) - Missing Authorization XforWooCommercePackage Quantity Discount High 8.8 2023-06-07 12:43:07 Deep Dive
CVE-2023-23727 WordPress Live Chat by Formilla – Real-time Chat & Chatbots Plugin Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS) FormillaLive Chat by Formilla Medium 5.9 2023-05-16 08:43:27 Deep Dive
CVE-2023-2682 Caton Live Mini_HTTPD ping.cgi command injection CatonLive Medium 6.3 2023-05-12 12:31:06 Deep Dive
CVE-2023-23734 WordPress Userlike – WordPress Live Chat plugin Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS) David VoswinkelUserlike – WordPress Live Chat plugin Medium 5.9 2023-05-09 10:40:15 Deep Dive
CVE-2023-0899 Steveas WP Live Chat Shoutbox <= 1.4.2 - Unauthenticated Stored XSS UnknownSteveas WP Live Chat Shoutbox 中危 -2023-04-24 18:30:51 Deep Dive
CVE-2023-1020 Steveas WP Live Chat Shoutbox <= 1.4.2 - Unauthenticated SQLi UnknownSteveas WP Live Chat Shoutbox 超危 -2023-04-24 18:30:51 Deep Dive
CVE-2023-1288 ENOVIA Live Collaboration V6R2013xE is affected by an XML External Entity injection (XXE) vulnerability Dassault SystèmesENOVIA Live Collaboration Medium 6.8 2023-03-09 16:33:10 Deep Dive
CVE-2023-1287 ENOVIA Live Collaboration V6R2013xE is affected by an XSL template injection vulnerability Dassault SystèmesENOVIA Live Collaboration Critical 9.0 2023-03-09 16:30:42 Deep Dive
CVE-2022-4669 Page Builder: Live Composer < 1.5.23 - Contributor+ Stored XSS via Shortcode UnknownPage Builder: Live Composer 中危 -2023-02-21 08:50:40 Deep Dive
CVE-2022-43469 WordPress Corona Virus (COVID-19) Banner & Live Data Plugin <= 1.7.0.6 is vulnerable to Cross Site Request Forgery (CSRF) OrchestratedCorona Virus (COVID-19) Banner & Live Data Medium 5.4 2023-02-14 05:20:02 Deep Dive
CVE-2015-10015 glidernet ogn-live sql injection glidernetogn-live Medium 5.5 2023-01-05 14:43:19 Deep Dive
CVE-2022-4735 asrashley dash-live DOM Node media.js ready cross site scripting asrashleydash-live Low 3.5 2022-12-25 15:59:34 Deep Dive
CVE-2022-3391 Retain Live Chat <= 0.1 - Admin+ Stored Cross-Site Scripting UnknownRetain Live Chat 中危 -2022-10-25 00:00:00 Deep Dive
CVE-2022-2535 SearchWP Live Ajax Search < 1.6.2 - Unauthenticated Arbitrary Post Title Disclosure UnknownSearchWP Live Ajax Search 中危 -2022-08-15 08:38:10 Deep Dive
CVE-2022-2039 Free Live Chat Support <= 1.0.11 - Cross-Site Request Forgery to Cross-Site Scripting livesupportiFree Live Chat Support High 8.8 2022-07-18 16:12:50 Deep Dive
CVE-2022-0642 JivoChat < 1.3.5.4 - Stored Cross-Site Scripting via CSRF UnknownJivoChat Live Chat – WP live chat plugin for WordPress 中危 -2022-05-30 08:35:35 Deep Dive
CVE-2022-1334 WP YouTube Live < 1.8.3 - Admin+ Stored Cross Site Scripting UnknownWP YouTube Live 中危 -2022-05-16 14:30:47 Deep Dive