Vulnerabilities (CVE)

Filtered by vendor Helpcenterlive Subscribe
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2011-3742 1 Helpcenterlive 1 Helpcenter Live 2024-11-21 5.0 MEDIUM N/A
HelpCenter Live 2.1.7 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by modules/HelpCenter/index.php and certain other files.
CVE-2010-1652 1 Helpcenterlive 1 Hcl 2024-11-21 5.0 MEDIUM N/A
Directory traversal vulnerability in the HelpCenter module in Help Center Live (HCL) 2.0.6 and 2.1.7 allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the file parameter to module.php. NOTE: some of these details are obtained from third party information.
CVE-2005-1674 1 Helpcenterlive 1 Help Center Live 2024-11-20 7.5 HIGH 6.5 MEDIUM
Cross-Site Request Forgery (CSRF) vulnerability in Help Center Live allows remote attackers to perform actions as the administrator via a link or IMG tag to view.php.