TechyTalk Quick Chat WordPress Plugin All up to the latest is affected by: SQL Injection. The impact is: Access to the database. The component is: like_escape is used in Quick-chat.php line 399. The attack vector is: Crafted ajax request.
[
{
"product": "Quick Chat WordPress Plugin",
"vendor": "TechyTalk",
"versions": [
{
"status": "affected",
"version": "All (At least as of date 2018-06-13)"
}
]
}
]