158 matches found
WordPress Chatbox Manager plugin <= 1.2.5 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by Mika in WordPress Plugin Chatbox Manager versions = 1.2.5...
CVE-2025-48167
Missing Authorization vulnerability in alexvtn Chatbox Manager wa-chatbox-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Chatbox Manager: from n/a through = 1.2.5...
CVE-2025-48167
CVE-2025-48167 involves a missing authorization flaw in the WordPress plugin Chatbox Manager (versions up to 1.2.5). The vulnerability stems from incorrectly configured access control security levels, allowing unauthorized actions. Public sources in the connected documents confirm the affected so...
CVE-2025-48167 WordPress Chatbox Manager plugin <= 1.2.5 - Broken Access Control Vulnerability
Missing Authorization vulnerability in alexvtn Chatbox Manager wa-chatbox-manager allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Chatbox Manager: from n/a through = 1.2.5...
CVE-2025-48167 WordPress Chatbox Manager plugin <= 1.2.5 - Broken Access Control Vulnerability
Missing Authorization vulnerability in alexvtn Chatbox Manager allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Chatbox Manager: from n/a through 1.2.5...
PT-2025-29727 · Unknown · Alexvtn Chatbox Manager
Name of the Vulnerable Software and Affected Versions: alexvtn Chatbox Manager versions through 1.2.5 Description: The software contains a missing authorization flaw due to incorrectly configured access control security levels. Recommendations: Update alexvtn Chatbox Manager to a version later th...
WordPress plugin Chatbox Manager 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...
Malicious code in chatbox-fca-remake (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 83a5b117803c27e7a6bb055ed45b86878c6edf34dea10fa6c638486c656c6ec8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4679 Malicious code in chatbox-fca-remake (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 83a5b117803c27e7a6bb055ed45b86878c6edf34dea10fa6c638486c656c6ec8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in chatbox-utility (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a35305b84275ca0c727af9b0ef8ccb738fade0f991cd578f0455da2a1c9ba4f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2025-4680 Malicious code in chatbox-utility (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware a35305b84275ca0c727af9b0ef8ccb738fade0f991cd578f0455da2a1c9ba4f8 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
CVE-2023-30326
Cross Site Scripting XSS vulnerability in username field in /WebContent/WEB-INF/lib/chatbox.jsp in wliang6 ChatEngine commit fded8e710ad59f816867ad47d7fc4862f6502f3e, allows attackers to execute arbitrary code...
CVE-2020-35852
Chatbox is affected by cross-site scripting XSS. An attacker has to upload any XSS payload with SVG, XML file in Chatbox. There is no restriction on file upload in Chatbox which leads to stored XSS...
CVE-2025-30790
Missing Authorization vulnerability in alexvtn Chatbox Manager wa-chatbox-manager allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Chatbox Manager: from n/a through = 1.2.2...
CVE-2025-30790
Missing Authorization vulnerability in alexvtn Chatbox Manager wa-chatbox-manager allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Chatbox Manager: from n/a through = 1.2.2...
CVE-2025-30790 WordPress Chatbox Manager plugin <= 1.2.2 - Broken Access Control Vulnerability
Missing Authorization vulnerability in alexvtn Chatbox Manager wa-chatbox-manager allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Chatbox Manager: from n/a through = 1.2.2...
CVE-2025-30790 WordPress Chatbox Manager plugin <= 1.2.2 - Broken Access Control Vulnerability
Missing Authorization vulnerability in alexvtn Chatbox Manager wa-chatbox-manager allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects Chatbox Manager: from n/a through = 1.2.2...
CVE-2025-30790
Technical details about CVE-2025-30790 are not provided in the connected documents. The initial entry notes a Missing Authorization issue in Chatbox Manager; monitor for vendor patch/version specifics and exposure context.
WordPress Chatbox Manager plugin <= 1.2.2 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by Nabil Irawan in WordPress Plugin Chatbox Manager versions = 1.2.2...
WordPress plugin Chatbox Manager 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...