13 matches found
EUVD-2023-27813
Malicious code in bioql PyPI...
CVE-2023-23727
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Formilla Live Chat by Formilla plugin = 1.3 versions...
CVE-2023-23727
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Formilla Live Chat by Formilla plugin = 1.3 versions...
CVE-2023-23727
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Formilla Live Chat by Formilla plugin = 1.3 versions...
Cross site scripting
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Formilla Live Chat by Formilla plugin = 1.3 versions...
CVE-2023-23727 WordPress Live Chat by Formilla – Real-time Chat & Chatbots Plugin Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Formilla Live Chat by Formilla plugin = 1.3 versions...
CVE-2023-23727
CVE-2023-23727 is a Stored XSS vulnerability in the WordPress plugin Live Chat by Formilla (Formilla Live Chat) affecting versions up to 1.3. The issue arises from inadequate input sanitization in the admin-facing settings, enabling an authenticated attacker (admin+) to inject scripts. Impact is ...
CVE-2023-23727 WordPress Live Chat by Formilla – Real-time Chat & Chatbots Plugin Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Formilla Live Chat by Formilla plugin = 1.3 versions...
WordPress plugin Live Chat by Formilla 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting vulnerabilit...
PT-2023-19164 · Formilla · Formilla Live Chat
Name of the Vulnerable Software and Affected Versions: Formilla Live Chat by Formilla plugin versions prior to 1.3 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. Recommendations: For Formilla Live Chat by...
WordPress Formilla Edge Targeted Messaging Platform for Sales and Marketing Plugin <= 1.0 is vulnerable to Cross Site Scripting (XSS)
Software Formilla Edge Targeted Messaging Platform for Sales and Marketing Type Plugin Vulnerable versions = 1.0 Fixed in 1.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE N/A Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID...
Live Chat by Formilla < 1.3.1 - Admin+ Stored XSS
The plugin does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...
WordPress Live Chat by Formilla – Real-time Chat & Chatbots Plugin Plugin <= 1.3 is vulnerable to Cross Site Scripting (XSS)
Software Live Chat by Formilla – Real-time Chat & Chatbots Plugin Type Plugin Vulnerable versions = 1.3 Fixed in 1.3.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-23727 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID...