3 matches found
CVE-2022-2361
The WP Social Chat WordPress plugin before 6.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks...
CVE-2022-2361
The WP Social Chat WordPress plugin before 6.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks...
CVE-2022-2361
CVE-2022-2361 affects the WP Social Chat WordPress plugin prior to version 6.0.5. The root cause is insufficient sanitization/escaping of certain plugin settings, which can allow stored cross-site scripting (XSS) by high-privilege users such as administrators. The issue is mitigated by upgrading ...