For those using PHP Live Helper v2.0 for providing live-chat on your web site - there was a new vulnerability discovered allowing for cross-scripting exploits. The developers of this app already patched it up and released an update. It's as simple as replacing just one file that has the vulnerable code.

Because this vulnerability can give an attacker full access to your web site, and possibly even entire web server, it is strongly recommended that you apply this patch ASAP. You can download it from the client download area on the PHP Live Helper web site.

dotCOM_host, the thread of yours was very much useful to me as i was in search of it. I hope that, this post of yours will be of great help for many. I also liked its simplicity and its straight and smart process of replacement.:)