Stored Cross-Site Scripting (XSS) via Cross-Site Request Forgery (CSRF) vulnerability discovered by Muhamad Hidayat in WordPress JivoChat Live Chat plugin (versions <= 1.3.5.3).
Update the WordPress JivoChat Live Chat plugin to the latest available version (at least 1.3.5.4).