Vulnerabilities and Security Researches

Zalo Official Live Chat, CVE-2025-46498

CVE, Research URL: CVE-2025-46498
Home page URL: Security reports for Zalo Official Live Chat
Application: Zalo Official Live Chat
Published on: Apr 24, 2025
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in nghialuu Zalo Official Live Chat allows Cross Site Request Forgery. This issue affects Zalo Official Live Chat: from n/a through 1.0.0.
Affected versions: Min -, max 1.0.0.
Status: vulnerable