Riccardo ten Cate

6 exploits Active since Apr 2018
CVE-2018-10233 WRITEUP HIGH WRITEUP
WordPress User Profile & Membership <2.0.7 - CSRF
The User Profile & Membership plugin before 2.0.7 for WordPress has no mitigations implemented against cross site request forgery attacks. This is a structural finding throughout the entire plugin.
CVSS 8.8
CVE-2018-10234 WRITEUP MEDIUM WRITEUP
UltimateMember < 2.0.11 - Authenticated Stored XSS via Account Deletion
Authenticated Cross site Scripting exists in the User Profile & Membership plugin before 2.0.11 for WordPress via the "Account Deletion Custom Text" input field on the wp-admin/admin.php?page=um_options&section=account page.
CVSS 4.8
CVE-2018-11105 WRITEUP MEDIUM WRITEUP
3cx Live Chat < 8.0.08 - Stored Cross-Site Scripting via Name and Email Input Fields
There is stored cross site scripting in the wp-live-chat-support plugin before 8.0.08 for WordPress via the "name" (aka wplc_name) and "email" (aka wplc_email) input fields to wp-json/wp_live_chat_support/v1/start_chat whenever a malicious attacker would initiate a new chat with an administrator. NOTE: this issue exists because of an incomplete fix for CVE-2018-9864.
CVSS 6.1
CVE-2018-12426 WRITEUP CRITICAL WRITEUP
WP Live Chat Support Pro <8.0.07 - RCE
The WP Live Chat Support Pro plugin before 8.0.07 for WordPress is vulnerable to unauthenticated Remote Code Execution due to client-side validation of allowed file types, as demonstrated by a v1/remote_upload request with a .php filename and the image/jpeg content type.
CVSS 9.8
CVE-2019-11561 WRITEUP MEDIUM WRITEUP
Chuango 433 MHz burglar-alarm - DoS
The Chuango 433 MHz burglar-alarm product line is vulnerable to a Denial of Service attack. When the condition is triggered, the OV2 base station is unable to process sensor states and effectively prevents the alarm from setting off, as demonstrated by Chuango branded products, and non-Chuango branded products such as the Eminent EM8617 OV2 Wifi Alarm System.
CVSS 5.9
CVE-2019-9659 WRITEUP CRITICAL WRITEUP
Chuango 433 MHz burglar-alarm - Info Disclosure
The Chuango 433 MHz burglar-alarm product line uses static codes in the RF remote control, allowing an attacker to arm, disarm, or trigger the alarm remotely via replay attacks, as demonstrated by Chuango branded products, and non-Chuango branded products such as the Eminent EM8617 OV2 Wifi Alarm System.
CVSS 9.1