Description
Multiple cross-site scripting (XSS) vulnerabilities in Help Center Live allow remote attackers to inject arbitrary web script or HTML via the (1) find parameter to index.php, (2) name or (3) message field of a chat request, or (4) the message body when opening a trouble ticket.
Exploits (1)
References (2)
Core 2
Core References
Exploit, Patch, Vendor Advisory mailing-list
x_refsource_bugtraq
http://www.securityfocus.com/archive/1/398457
Various Sources x_refsource_misc
http://www.gulftech.org/?node=research&article_id=00076-05172005
Scores
EPSS
0.0046
EPSS Percentile
64.0%
Details
Status
published
Products (1)
ubertec/help_center_live
Published
May 19, 2005
Tracked Since
Feb 18, 2026