GHSA-97cc-825c-399g

Source

https://github.com/advisories/GHSA-97cc-825c-399g

Import Source

https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/12/GHSA-97cc-825c-399g/GHSA-97cc-825c-399g.json

JSON Data

https://api.test.osv.dev/v1/vulns/GHSA-97cc-825c-399g

Aliases

Published

2021-12-10T20:33:29Z

Modified

2023-12-06T00:46:30.297649Z

Severity

6.1 (Medium) CVSS_V3 - CVSS:3.0/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:N CVSS Calculator

Summary

Cross site scripting in remdex/livehelperchat

Details

livehelperchat is vulnerable to Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Database specific

{
    "nvd_published_at": "2021-12-08T11:15:00Z",
    "github_reviewed": true,
    "severity": "MODERATE",
    "cwe_ids": [
        "CWE-79"
    ],
    "github_reviewed_at": "2021-12-09T18:07:18Z"
}

References

Affected packages

Packagist / remdex/livehelperchat

Package

Name: remdex/livehelperchat
Purl: pkg:composer/remdex/livehelperchat

Affected ranges

Type: ECOSYSTEM
Events: Introduced

0Unknown introduced version / All previous versions are affected

Last affected

2.0

Affected versions

1.*

1.74

1.81

1.82

1.83

1.84

1.85

1.86

1.87

1.88

1.89

1.90

1.91

1.93

1.94

1.95

1.98

2.*

2.0

Database specific

source

"https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2021/12/GHSA-97cc-825c-399g/GHSA-97cc-825c-399g.json"