Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2021-4123: CSRF minor fixes (#1726) · LiveHelperChat/livehelperchat@2a98c69

livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)

CVE
#csrf#web#js

Permalink

Showing with 102 additions and 135 deletions.

  1. +1 −1 lhc_web/design/defaulttheme/js/js_static/54bcce5942dd8e6e1e1e0c29802cfbef.js
  2. +1 −1 lhc_web/design/defaulttheme/js/js_static/54bcce5942dd8e6e1e1e0c29802cfbef.js.map
  3. +1 −1 lhc_web/design/defaulttheme/js/js_static/7eb59706c7a02fa801134f7307266524.js
  4. +1 −1 lhc_web/design/defaulttheme/js/js_static/7eb59706c7a02fa801134f7307266524.js.map
  5. +1 −1 lhc_web/design/defaulttheme/js/js_static/d2012e174bb7dc98cdfd4c4a1a12008c.js
  6. +1 −1 lhc_web/design/defaulttheme/js/js_static/d2012e174bb7dc98cdfd4c4a1a12008c.js.map
  7. +13 −9 lhc_web/design/defaulttheme/js/lh.js
  8. +1 −1 lhc_web/design/defaulttheme/js/lh.min.js
  9. +0 −9 lhc_web/design/defaulttheme/js/widgetv2/1.76e60b1aab09f2ea2bea.ie.js
  10. +0 −1 lhc_web/design/defaulttheme/js/widgetv2/1.76e60b1aab09f2ea2bea.ie.js.map
  11. +0 −2 lhc_web/design/defaulttheme/js/widgetv2/2.90658096bc82c95d6b4b.ie.js
  12. +0 −1 lhc_web/design/defaulttheme/js/widgetv2/2.90658096bc82c95d6b4b.ie.js.map
  13. +0 −2 lhc_web/design/defaulttheme/js/widgetv2/3.ebd2630847bc8173025f.ie.js
  14. +0 −1 lhc_web/design/defaulttheme/js/widgetv2/3.ebd2630847bc8173025f.ie.js.map
  15. +0 −2 lhc_web/design/defaulttheme/js/widgetv2/4.80f011fffa0f91545942.ie.js
  16. +0 −1 lhc_web/design/defaulttheme/js/widgetv2/4.80f011fffa0f91545942.ie.js.map
  17. +0 −2 lhc_web/design/defaulttheme/js/widgetv2/5.1bd04e3cb154d7fc49cd.ie.js
  18. +0 −1 lhc_web/design/defaulttheme/js/widgetv2/5.1bd04e3cb154d7fc49cd.ie.js.map
  19. +0 −2 lhc_web/design/defaulttheme/js/widgetv2/6.5e9f23d9c05330e9214e.ie.js
  20. +0 −1 lhc_web/design/defaulttheme/js/widgetv2/6.5e9f23d9c05330e9214e.ie.js.map
  21. +0 −2 lhc_web/design/defaulttheme/js/widgetv2/7.24e095ac1eddde957959.ie.js
  22. +0 −1 lhc_web/design/defaulttheme/js/widgetv2/7.24e095ac1eddde957959.ie.js.map
  23. +0 −66 lhc_web/design/defaulttheme/js/widgetv2/react.app.ie.js
  24. +0 −1 lhc_web/design/defaulttheme/js/widgetv2/react.app.ie.js.map
  25. 0 lhc_web/design/defaulttheme/js/widgetv2/vendor.ie.js
  26. +4 −4 lhc_web/design/defaulttheme/tpl/lhchat/lists/open_active_chat_tab.tpl.php
  27. +2 −0 lhc_web/design/defaulttheme/tpl/lhuser/setopstatus.tpl.php
  28. +6 −6 lhc_web/design/defaulttheme/tpl/pagelayouts/parts/user_box.tpl.php
  29. +6 −0 lhc_web/modules/lhchat/dashboardwidgets.php
  30. +3 −3 lhc_web/modules/lhfront/module.php
  31. +11 −0 lhc_web/modules/lhfront/settings.php
  32. +5 −0 lhc_web/modules/lhfront/switchdashboard.php
  33. +4 −3 lhc_web/modules/lhuser/module.php
  34. +4 −0 lhc_web/modules/lhuser/setalwaysonline.php
  35. +5 −0 lhc_web/modules/lhuser/setinactive.php
  36. +5 −0 lhc_web/modules/lhuser/setinvisible.php
  37. +5 −0 lhc_web/modules/lhuser/setoffline.php
  38. +5 −0 lhc_web/modules/lhuser/setopstatus.php
  39. +5 −0 lhc_web/modules/lhuser/setsetting.php
  40. +7 −2 lhc_web/modules/lhuser/setsettingajax.php
  41. +5 −6 lhc_web/modules/lhuser/setsettingajaxraw.php

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE-2023-6905
CVE-2023-6903
CVE-2023-6904
CVE-2023-3907