Remigijus Kiminas

31 exploits Active since Oct 2020
CVE-2020-26134 WRITEUP MEDIUM WRITEUP
Live Helper Chat < 3.44 - Stored Cross-Site Scripting via BBCode in Chat Messages
Live Helper Chat before 3.44v allows stored XSS in chat messages with an operator via BBCode.
CVSS 6.1
CVE-2020-26135 WRITEUP MEDIUM WRITEUP
Live Helper Chat < 3.44 - Reflected Cross-Site Scripting via setsettingajax PATH_INFO
Live Helper Chat before 3.44v allows reflected XSS via the setsettingajax PATH_INFO.
CVSS 6.1
CVE-2021-4123 WRITEUP MEDIUM WRITEUP
livehelperchat < 2.0 - Cross-Site Request Forgery
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
CVSS 6.5
CVE-2021-4131 WRITEUP HIGH WRITEUP
live_helper_chat < 2.0 - Cross-Site Request Forgery
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
CVSS 8.8
CVE-2021-4132 WRITEUP MEDIUM WRITEUP
live_helper_chat < 3.90 and remdex/livehelperchat < 3.91 - Cross-Site Scripting
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS 5.4
CVE-2021-4169 WRITEUP MEDIUM WRITEUP
live_helper_chat < 3.90 - Stored Cross-Site Scripting
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS 6.1
CVE-2021-4175 WRITEUP MEDIUM WRITEUP
live_helper_chat < 3.91 - Stored Cross-Site Scripting
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS 5.4
CVE-2021-4176 WRITEUP MEDIUM WRITEUP
live_helper_chat < 3.91 - Stored Cross-Site Scripting
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS 6.1
CVE-2021-4177 WRITEUP MEDIUM WRITEUP
live_helper_chat < 3.91 - Sensitive Information Exposure via Error Message
livehelperchat is vulnerable to Generation of Error Message Containing Sensitive Information
CVSS 5.3
CVE-2021-4179 WRITEUP MEDIUM WRITEUP
livehelperchat < 3.91 - Cross-Site Scripting
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS 5.4
CVE-2022-0226 WRITEUP MEDIUM WRITEUP
live_helper_chat < 2.0 - Cross-Site Request Forgery
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
CVSS 4.3
CVE-2022-0231 WRITEUP MEDIUM WRITEUP
live_helper_chat < 3.91 and remdex/livehelperchat < 3.92 - Cross-Site Request Forgery
livehelperchat is vulnerable to Cross-Site Request Forgery (CSRF)
CVSS 6.5
CVE-2022-0245 WRITEUP MEDIUM WRITEUP
GitHub livehelperchat/livehelperchat <2.0 - CSRF
Cross-Site Request Forgery (CSRF) in GitHub repository livehelperchat/livehelperchat prior to 2.0.
CVSS 4.3
CVE-2022-0253 WRITEUP MEDIUM WRITEUP
livehelperchat < 3.91 - Stored Cross-Site Scripting
livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSS 5.4
CVE-2022-0266 WRITEUP MEDIUM WRITEUP
Packagist remdex/livehelperchat <3.92v - Auth Bypass
Authorization Bypass Through User-Controlled Key in Packagist remdex/livehelperchat prior to 3.92v.
CVSS 6.6
CVE-2022-0370 WRITEUP MEDIUM WRITEUP
Packagist remdex/livehelperchat <3.93v - XSS
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS 5.4
CVE-2022-0374 WRITEUP MEDIUM WRITEUP
Packagist remdex/livehelperchat <3.93v - XSS
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS 5.4
CVE-2022-0375 WRITEUP MEDIUM WRITEUP
Packagist remdex/livehelperchat <3.93v - XSS
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS 4.8
CVE-2022-0387 WRITEUP MEDIUM WRITEUP
Packagist remdex/livehelperchat <3.93v - XSS
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS 5.4
CVE-2022-0394 WRITEUP MEDIUM WRITEUP
Packagist remdex/livehelperchat <3.93v - XSS
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS 5.4
CVE-2022-0395 WRITEUP MEDIUM WRITEUP
Packagist remdex/livehelperchat <3.93v - XSS
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS 5.4
CVE-2022-0502 WRITEUP MEDIUM WRITEUP
Packagist remdex/livehelperchat <3.93v - XSS
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS 5.4
CVE-2022-0612 WRITEUP MEDIUM WRITEUP
Packagist remdex/livehelperchat <3.93v - XSS
Cross-site Scripting (XSS) - Stored in Packagist remdex/livehelperchat prior to 3.93v.
CVSS 5.4
CVE-2022-0935 WRITEUP HIGH WRITEUP
livehelperchat/livehelperchat <3.97 - SSRF
Host Header injection in password Reset in GitHub repository livehelperchat/livehelperchat prior to 3.97.
CVSS 8.8
CVE-2022-1176 WRITEUP HIGH WRITEUP
livehelperchat < 3.96 - Insecure Direct Object Reference via Loose Comparison
Loose comparison causes IDOR on multiple endpoints in GitHub repository livehelperchat/livehelperchat prior to 3.96.
CVSS 7.5