A SQL injection issue was discovered in the Quick Chat plugin before 4.00 for WordPress.
9.8CVSS
9.8AI Score
0.001EPSS
TechyTalk Quick Chat WordPress Plugin All up to the latest is affected by: SQL Injection. The impact is: Access to the database. The component is: like_escape is used in Quick-chat.php line 399. The attack vector is: Crafted ajax request.
9.8CVSS
9.5AI Score
0.001EPSS