JVN#70951878: WordPress plugin "WP Live Chat Support" vulnerable to cross-site scripting

2017-06-01T00:00:00
ID JVN:70951878
Type jvn
Reporter Japan Vulnerability Notes
Modified 2017-06-01T00:00:00

Description

## Description

The WordPress plugin "WP Live Chat Support" provided by CODECABIN_ contains a cross-site scripting vulnerability (CWE-79).

## Impact

An arbitrary script may be executed on a logged in user's web browser.

## Solution

Update the plugin
Update the plugin according to the information provided by the developer.

## Products Affected

  • WP Live Chat Support prior to version 7.0.07