Business Live Chat Software CVEs and Security Vulnerabilities

Filtered by vendor Bdtask Subscriptions

Filtered by product Business Live Chat Software Subscriptions

Switch to Advanced Search (Beta)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2020-37106	1 Bdtask	1 Business Live Chat Software	2026-02-10	5.3 Medium
Business Live Chat Software 1.0 contains a cross-site request forgery vulnerability that allows attackers to change user account roles without authentication. Attackers can craft a malicious HTML form to modify user privileges by submitting a POST request to the user creation endpoint with administrative access parameters.

Page 1 of 1.