CVE-2024-27516

Published: Feb 28, 2024

Modified: Aug 2, 2024

PUBLISHED

Description

Server-Side Template Injection (SSTI) vulnerability in livehelperchat before 4.34v, allows remote attackers to execute arbitrary code and obtain sensitive information via the search parameter in lhc_web/modules/lhfaq/faqweight.php.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://github.com/LiveHelperChat/livehelperchat/issues/2054

https://github.com/LiveHelperChat/livehelperchat/commit/a61d231526a36d4a7d8cc957914799ee1f9db0ab

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2024-27516

Description

Affected Products

References