Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackJosé AguileraPATCHSTACK:DD304EDB266AA670A58DD3BFEF32AE72
HistoryDec 16, 2021 - 12:00 a.m.

WordPress Crisp Live Chat plugin <= 0.31 - Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS)

2021-12-1600:00:00
José Aguilera
patchstack.com
14

0.001 Low

EPSS

Percentile

41.9%

JSON

Cross-Site Request Forgery (CSRF) vulnerability leading to Stored Cross-Site Scripting (XSS) discovered by José Aguilera in WordPress Crisp Live Chat plugin (versions <= 0.31).

Solution

           Update the WordPress Crisp Live Chat plugin to the latest available version (at least 0.32).
CPENameOperatorVersion
crisple0.31

Related

cvelist 1
cve 1
cnvd 1
nvd 1
prion 1
wpvulndb 1
cvelist
cvelist
CVE-2021-43353 Crisp Live Chat <= 0.31 Cross-Site Request Forgery to Stored Cross-Site Scripting
2022-01-18 16:52:24
cve
cve
CVE-2021-43353
2022-01-18 17:15:09
cnvd
cnvd
WordPress Crisp Live Chat plugin cross-site scripting vulnerability
2022-01-21 00:00:00
nvd
nvd
CVE-2021-43353
2022-01-18 17:15:09
prion
prion
Cross site request forgery (csrf)
2022-01-18 17:15:00
wpvulndb
wpvulndb
Crisp Live Chat < 0.32 - CSRF to Stored Cross-Site Scripting
2021-12-16 00:00:00

0.001 Low

EPSS

Percentile

41.9%

JSON
Related for PATCHSTACK:DD304EDB266AA670A58DD3BFEF32AE72
cvelist1cve1cnvd1nvd1prion1wpvulndb1