CVE-2022-0642
CVE-2022-0642 relates to the WordPress JivoChat Live Chat plugin prior to 1.3.5.4. The vulnerability is a stored Cross-Site Scripting (XSS) caused by inadequate CSRF protection on POST requests to the plugin’s admin page and insufficient sanitisation of certain parameters, enabling a logged-in ad...