CVE-2025-68895

Authentication Bypass Using an Alternate Path or Channel vulnerability in ahachat AhaChat Messenger Marketing ahachat-messenger-marketing allows Password Recovery Exploitation.This issue affects AhaChat Messenger Marketing: from n/a through = 1.1...

CVE-2025-68895

Authentication Bypass Using an Alternate Path or Channel vulnerability in ahachat AhaChat Messenger Marketing ahachat-messenger-marketing allows Password Recovery Exploitation.This issue affects AhaChat Messenger Marketing: from n/a through = 1.1...

CVE-2025-68895 WordPress AhaChat Messenger Marketing plugin <= 1.1 - Broken Authentication vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in ahachat AhaChat Messenger Marketing ahachat-messenger-marketing allows Password Recovery Exploitation.This issue affects AhaChat Messenger Marketing: from n/a through = 1.1...

CVE-2025-68895 WordPress AhaChat Messenger Marketing plugin <= 1.1 - Broken Authentication vulnerability

Authentication Bypass Using an Alternate Path or Channel vulnerability in ahachat AhaChat Messenger Marketing ahachat-messenger-marketing allows Password Recovery Exploitation.This issue affects AhaChat Messenger Marketing: from n/a through = 1.1...

CVE-2025-68895

The CVE CVE-2025-68895 concerns the WordPress plugin AhaChat Messenger Marketing (ahachat-messenger-marketing) ≤ 1.1, documented as a Broken Authentication vulnerability enabling authentication bypass/password-recovery exploitation. Public descriptions consistently tie the issue to an alternate p...

WordPress plugin AhaChat Messenger Marketing 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There is...

PT-2026-21119

Name of the Vulnerable Software and Affected Versions AhaChat Messenger Marketing versions prior to 1.2 Description An authentication bypass issue exists in AhaChat Messenger Marketing that allows for password recovery exploitation through an alternate path or channel. Recommendations Update to...

WordPress AhaChat Messenger Marketing plugin <= 1.1 - Broken Authentication vulnerability

Broken Authentication vulnerability discovered by Rapid0nion in WordPress Plugin AhaChat Messenger Marketing versions = 1.1...

WordPress AhaChat Messenger Marketing plugin <= 1.1 - Reflected XSS vulnerability

Reflected XSS vulnerability discovered by Yevgen Goncharuk in WordPress Plugin AhaChat Messenger Marketing versions = 1.1...

CVE-2025-14316 AhaChat Messenger Marketing <= 1.1 - Reflected XSS

The AhaChat Messenger Marketing WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

EUVD-2025-206373

The AhaChat Messenger Marketing WordPress plugin through 1.1 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

CVE-2025-14316

CVE-2025-14316 affects AhaChat Messenger Marketing for WordPress (versions through 1.1). The issue is a reflected XSS: the plugin outputs a parameter without proper sanitization/escaping, potentially impacting high-privilege users (e.g., admins). Public details identify the affected plugin/versio...

PT-2026-4725

Name of the Vulnerable Software and Affected Versions AhaChat Messenger Marketing WordPress plugin versions through 1.1 Description The plugin does not properly sanitize and escape a parameter before displaying it on the page, which can lead to a Reflected Cross-Site Scripting issue. This could...

WordPress plugin AhaChat Messenger Marketing has a security vulnerability

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. WordPres...