6 matches found
CVE-2026-15291
The Chat Help – Click to Chat Button & Form plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the REST API endpoints /wp-json/chat-help/v1/leads and /wp-json/chat-help/v1/leads/id. This is due to the plugin not performing any...
EUVD-2026-42800
The Chat Help – Click to Chat Button & Form plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the REST API endpoints /wp-json/chat-help/v1/leads and /wp-json/chat-help/v1/leads/id. This is due to the plugin not performing any...
WordPress Chat Help plugin missing authorization vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A missing authorization vulnerability exists in the WordPress Chat Help plugin, which can be exploited by an attacker to leverage an incorrectly configured access control securi...
CVE-2025-66099
CVE-2025-66099 concerns a missing authorization vulnerability in the WordPress Chat Help plugin (WordPress). The connected sources describe a Broken/Missing Access Control issue allowing exploitation due to an incorrectly configured access control security level, affecting plugin versions ≤ 3.1.3...
WordPress plugin Chat Help 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. A missing authorization vulnerability exists in the WordPress Chat Help plugin, which can be exploited by an attacker to leverage an incorrectly configured access control securi...
WordPress Chat Help plugin <= 3.1.3 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Kim YunJi in WordPress Plugin Chat Help versions = 3.1.3...