Lucene search

CVE-2022-3415 Chat Bubble < 2.3 - Unauthenticated Stored Cross-Site Scripting

🗓️ 14 Nov 2022 00:00:00Reported by WPScanType

The Chat Bubble WordPress plugin before 2.3 is vulnerable to Unauthenticated Stored Cross-Site Scripting (CVE-2022-3415)

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 6
wpexploit	Chat Bubble < 2.3 - Unauthenticated Stored Cross-Site Scripting	18 Oct 202200:00	–	wpexploit
prion	Cross site scripting	14 Nov 202215:15	–	prion
patchstack	WordPress Chat Bubble plugin <= 2.2 - Unauth. Stored Cross-Site Scripting (XSS) vulnerability	18 Oct 202200:00	–	patchstack
wpvulndb	Chat Bubble < 2.3 - Unauthenticated Stored Cross-Site Scripting	18 Oct 202200:00	–	wpvulndb
cve	CVE-2022-3415	14 Nov 202215:15	–	cve
nvd	CVE-2022-3415	14 Nov 202215:15	–	nvd

[
  {
    "vendor": "Unknown",
    "product": "Chat Bubble – Floating Chat with Contact Chat Icons, Messages, Telegram, Email, SMS, Call me back",
    "versions": [
      {
        "version": "2.3",
        "status": "affected",
        "lessThan": "2.3",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
wpscan	www.wpscan.com/vulnerability/012c5b64-ef76-4539-afd8-40f6c329ae88

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

14 Nov 2022 00:00Current

6.1Medium risk

Vulners AI Score6.1

EPSS0.00549

CWE-79