Lucene search
K

14 matches found

NVD
NVD
added 5 days ago8 views

CVE-2026-15291

The Chat Help – Click to Chat Button & Form plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the REST API endpoints /wp-json/chat-help/v1/leads and /wp-json/chat-help/v1/leads/id. This is due to the plugin not performing any...

7.5CVSS0.0047EPSS
Exploits0References6
EUVD
EUVD
added 5 days ago7 views

EUVD-2026-42800

The Chat Help – Click to Chat Button & Form plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the REST API endpoints /wp-json/chat-help/v1/leads and /wp-json/chat-help/v1/leads/id. This is due to the plugin not performing any...

7.5CVSS5.9AI score0.0047EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 5 days ago6 views

CVE-2026-15291

The Chat Help – Click to Chat Button & Form plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the REST API endpoints /wp-json/chat-help/v1/leads and /wp-json/chat-help/v1/leads/id. This is due to the plugin not performing any...

7.5CVSS5.9AI score0.0047EPSS
Exploits0References7
Cvelist
Cvelist
added 5 days ago30 views

CVE-2026-15291 Chat Help – Click to Chat Button & Form <= 3.1.3 - Missing Authorization to Unauthenticated Sensitive Information Exposure

The Chat Help – Click to Chat Button & Form plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the REST API endpoints /wp-json/chat-help/v1/leads and /wp-json/chat-help/v1/leads/id. This is due to the plugin not performing any...

7.5CVSS0.0047EPSS
Exploits0References6
CNVD
CNVD
added 2025/11/25 12:0 a.m.5 views

WordPress Chat Help plugin missing authorization vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A missing authorization vulnerability exists in the WordPress Chat Help plugin, which can be exploited by an attacker to leverage an incorrectly configured access control securi...

5.3CVSS6.8AI score0.00193EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/22 12:34 p.m.9 views

CVE-2025-66099

Missing Authorization vulnerability in ThemeAtelier Chat Help chat-help allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Chat Help: from n/a through = 3.1.3...

5.3CVSS6.9AI score0.00193EPSS
Exploits0References1
NVD
NVD
added 2025/11/21 1:15 p.m.12 views

CVE-2025-66099

Missing Authorization vulnerability in ThemeAtelier Chat Help chat-help allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Chat Help: from n/a through = 3.1.3...

5.3CVSS0.00193EPSS
Exploits0References1
CVE
CVE
added 2025/11/21 12:30 p.m.16 views

CVE-2025-66099

CVE-2025-66099 concerns a missing authorization vulnerability in the WordPress Chat Help plugin (WordPress). The connected sources describe a Broken/Missing Access Control issue allowing exploitation due to an incorrectly configured access control security level, affecting plugin versions ≤ 3.1.3...

5.3CVSS6.6AI score0.00193EPSS
Exploits0References1
EUVD
EUVD
added 2025/11/21 12:30 p.m.7 views

EUVD-2025-198450

Missing Authorization vulnerability in ThemeAtelier Chat Help chat-help allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Chat Help: from n/a through = 3.1.3...

5.3CVSS6.5AI score0.00193EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/21 12:30 p.m.11 views

CVE-2025-66099 WordPress Chat Help plugin <= 3.1.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in ThemeAtelier Chat Help chat-help allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Chat Help: from n/a through = 3.1.3...

5.3CVSS0.00193EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/11/21 12:30 p.m.4 views

CVE-2025-66099 WordPress Chat Help plugin <= 3.1.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in ThemeAtelier Chat Help chat-help allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Chat Help: from n/a through = 3.1.3...

5.3CVSS6.6AI score0.00193EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.5 views

WordPress plugin Chat Help 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A missing authorization vulnerability exists in the WordPress Chat Help plugin, which can be exploited by an attacker to leverage an incorrectly configured access control securi...

5.3CVSS6.7AI score0.00193EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/21 12:0 a.m.9 views

PT-2025-47766

Missing Authorization vulnerability in ThemeAtelier Chat Help chat-help allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Chat Help: from n/a through = 3.1.3...

7AI score0.00193EPSS
Exploits0References2
Patchstack
Patchstack
added 2025/11/11 11:26 a.m.7 views

WordPress Chat Help plugin <= 3.1.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Kim YunJi in WordPress Plugin Chat Help versions = 3.1.3...

5.3CVSS7AI score0.00193EPSS
Exploits0Affected Software1
Rows per page
Query Builder