CVE-2019-25737 in Live Chat Unlimitedinformación

Resumen

por MITRE • 2026-06-04

Live Chat Unlimited 2.8.3 contains a stored cross-site scripting vulnerability that allows unauthenticated attackers to inject malicious scripts through the chat input field. Attackers can submit payloads containing script tags and event handlers that execute in the admin area, enabling cookie theft or forced redirects to malicious websites.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Responsable

VulnCheck

Reservar

2026-06-04

Divulgación

2026-06-04

Moderación

aceptado

Artículo

VDB-368339

CPE

listo

CWE

CWE-79 (confirmado)

Explotación

Descargar

CVSS

7.2 (CNA)

EPSS

0.00000

KEV

Actividades

bajo

Sector

Chemical, Hostingprovider, ...

Fuentes

MITRE	https://www.cve.org/CVERecord?id=CVE-2019-25737
NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-25737
CVE Details	https://www.cvedetails.com/cve/CVE-2019-25737/

◂ Anterior Visión De Conjunto Próximo ▸

Interested in the pricing of exploits?

See the underground prices here!