CVE-2023-25710

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in DIGITALBLUE Click to Call or Chat Buttons plugin = 1.4.0 versions...

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in DIGITALBLUE Click to Call or Chat Buttons plugin = 1.4.0 versions...

PT-2023-20264 · Digitalblue · Digitalblue Click To Call/Chat Buttons Plugin

Name of the Vulnerable Software and Affected Versions: DIGITALBLUE Click to Call or Chat Buttons plugin versions 1.4.0 and earlier Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. This vulnerability affects t...