3 matches found
CVE-2024-6498
creationtimestamp| type| source ---|---|--- 2024-08-05 08:53:26+00:00| seen| https://t.me/cvedetector/2434...
CVE-2024-6498 CollectChat < 2.4.4 - Admin+ XSS
The Chatbot for WordPress by Collect.chat ⚡️ WordPress plugin before 2.4.4 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Cross-Site Scripting attacks even when unfilteredhtml is disallowed...
WordPress collectchat Plugin < 2.4.4 is vulnerable to Cross Site Scripting (XSS)
Software collectchat Type Plugin Vulnerable versions 2.4.4 Fixed in 2.4.4 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-6498 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 0dd324fc130c Credits Fourcade Required privilege...