CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

RedhatCVE•added 2025/12/17 10:2 a.m.•3 views

CVE-2025-64240

Cross-Site Request Forgery CSRF vulnerability in freshchat Freshchat freshchat allows Cross Site Request Forgery.This issue affects Freshchat: from n/a through = 2.3.4...

4.3CVSS6.9AI score0.00107EPSS

Exploits0References1

EUVD•added 2025/12/16 9:31 a.m.•3 views

EUVD-2025-203610

Cross-Site Request Forgery CSRF vulnerability in freshchat Freshchat freshchat allows Cross Site Request Forgery.This issue affects Freshchat: from n/a through = 2.3.4...

4.3CVSS6.3AI score0.00107EPSS

Exploits0References2

NVD•added 2025/12/16 9:15 a.m.•3 views

CVE-2025-64240

Cross-Site Request Forgery CSRF vulnerability in freshchat Freshchat freshchat allows Cross Site Request Forgery.This issue affects Freshchat: from n/a through = 2.3.4...

4.3CVSS0.00107EPSS

Exploits0References1

Cvelist•added 2025/12/16 8:12 a.m.•24 views

CVE-2025-64240 WordPress Freshchat plugin <= 2.3.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in freshchat Freshchat freshchat allows Cross Site Request Forgery.This issue affects Freshchat: from n/a through = 2.3.4...

4.3CVSS0.00107EPSS

Exploits0References1

Vulnrichment•added 2025/12/16 8:12 a.m.•2 views

CVE-2025-64240 WordPress Freshchat plugin <= 2.3.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in freshchat Freshchat freshchat allows Cross Site Request Forgery.This issue affects Freshchat: from n/a through = 2.3.4...

4.3CVSS6.5AI score0.00107EPSS

Exploits0References1

CVE•added 2025/12/16 8:12 a.m.•5 views

CVE-2025-64240

CVE-2025-64240 concerns the WordPress Freshchat plugin (versions n/a through 2.3.4) and is a CSRF vulnerability. The issue arises in freshchat’s handling of requests, potentially allowing an attacker to spoof a request and perform actions on behalf of an authenticated user. Affected component: Wo...

4.3CVSS6.5AI score0.00107EPSS

Exploits0References1

Positive Technologies•added 2025/12/16 12:0 a.m.•3 views

PT-2025-51388

Name of the Vulnerable Software and Affected Versions freshchat versions n/a through 2.3.4 Description A Cross-Site Request Forgery CSRF issue exists in freshchat. This allows attackers to potentially perform actions on behalf of an authenticated user without their knowledge. Recommendations Upda...

4.3CVSS6.3AI score0.00107EPSS

Exploits0References3

CNNVD•added 2025/12/16 12:0 a.m.•3 views

WordPress plugin Freshchat 安全漏洞

WordPress Freshchat plugin is a tool for integrating live chat functionality on WordPress websites, mainly providing customer support and user interaction features. The WordPress Freshchat plugin suffers from a cross-site request forgery vulnerability that originates from a web application that...

4.3CVSS6.7AI score0.00107EPSS

Exploits0References1

Patchstack•added 2025/12/11 6:28 p.m.•5 views

WordPress Freshchat plugin <= 2.3.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Nabil Irawan in WordPress Plugin Freshchat versions = 2.3.4...

4.3CVSS7AI score0.00107EPSS

Exploits0Affected Software1

Hacker One•added 2021/11/19 1:19 a.m.•16 views

Judge.me : Email templates XSS by filterXSS bypass

Summary: js-xss is used to prevent XSS on email templates previews but the custom onIgnoreTag function can be used to bypass this filter. This leads to a Self-XSS scenario that can be used to achieve Account Takeover in 1-click. js onIgnoreTag: function e, t return "!--if" === e || "!endif--" ===...

0.2AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by