CVE-2021-25016 Chaty < 2.8.3 - Reflected Cross-Site Scripting

🗓️ 03 Jan 2022 12:49:12Reported by WPScanType

Chaty WordPress plugin 2.8.3 Reflected Cross-Site Scriptin

Reporter	Title	Published	Views	Family All 15
Circl	CVE-2021-25016	3 Jan 202216:44	–	circl
CNNVD	WordPress plugin Chaty 跨站脚本漏洞	3 Jan 202200:00	–	cnnvd
CNVD	WordPress Chaty Cross-Site Scripting Vulnerability (CNVD-2022-03904)	5 Jan 202200:00	–	cnvd
CVE	CVE-2021-25016	3 Jan 202212:49	–	cve
Nuclei	Chaty < 2.8.2 - Cross-Site Scripting	27 Jun 202603:01	–	nuclei
NVD	CVE-2021-25016	3 Jan 202213:15	–	nvd
OpenVAS	WordPress Chaty Pro Plugin < 2.8.2 XSS Vulnerability	20 Jun 202200:00	–	openvas
OpenVAS	WordPress Chaty Plugin < 2.8.4 XSS Vulnerability	20 Jun 202200:00	–	openvas
OSV	CVE-2021-25016	3 Jan 202213:15	–	osv
Patchstack	WordPress Chaty plugin <= 2.8.2 - Reflected Cross-Site Scripting (XSS) vulnerability	6 Dec 202100:00	–	patchstack

[
  {
    "product": "Floating Chat Widget: Contact Icons, Messages, Telegram, Email, SMS, Call Button – Chaty",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "2.8.3",
        "status": "affected",
        "version": "2.8.3",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Floating Chat Widget Pro - Chaty Pro",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "2.8.2",
        "status": "affected",
        "version": "2.8.2",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
wpscan	www.wpscan.com/vulnerability/b5035987-6227-4fc6-bc45-1e8016e5c4c0

03 Jan 2022 12:49Current

6.2Medium risk

Vulners AI Score6.2

EPSS0.01806

CWE-79