5 matches found
CVE-2023-23734
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in David Voswinkel Userlike – WordPress Live Chat plugin = 2.2 versions...
CVE-2023-23734
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in David Voswinkel Userlike – WordPress Live Chat plugin = 2.2 versions...
CVE-2023-23734 WordPress Userlike – WordPress Live Chat plugin Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in David Voswinkel Userlike – WordPress Live Chat plugin = 2.2 versions...
CVE-2023-23734
The CVE-2023-23734 issue affects the WordPress plugin Userlike – WordPress Live Chat (David Voswinkel) versions ≤ 2.2. It is an authenticated Stored XSS vulnerability (admin+), caused by insufficient sanitization/escaping of settings, enabling an administrator to inject scripts executed by other ...
WordPress Userlike – WordPress Live Chat plugin Plugin <= 2.2 is vulnerable to Cross Site Scripting (XSS)
Software Userlike – WordPress Live Chat plugin Type Plugin Vulnerable versions = 2.2 Fixed in 2.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23734 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID da66e187f0fd Credits yuyud...