CVE-2022-0935
HIGHlivehelperchat/livehelperchat <3.97 - SSRF
Title source: llmDescription
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97.
Exploits (1)
github
NO CODE
2 stars
by tomorroisnew · poc
https://github.com/tomorroisnew/CVE/tree/main/CVE-2022-0935
Scores
CVSS v3
8.8
EPSS
0.0040
EPSS Percentile
60.5%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Details
CWE
CWE-840
CWE-116
Status
published
Products (1)
livehelperchat/live_helper_chat
< 3.97
Published
Apr 07, 2022
Tracked Since
Feb 18, 2026