EUVD-2023-27813

Malicious code in bioql PyPI...

CVE-2023-23727

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Formilla Live Chat by Formilla plugin = 1.3 versions...

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Formilla Live Chat by Formilla plugin = 1.3 versions...

CVE-2023-23727

CVE-2023-23727 is a Stored XSS vulnerability in the WordPress plugin Live Chat by Formilla (Formilla Live Chat) affecting versions up to 1.3. The issue arises from inadequate input sanitization in the admin-facing settings, enabling an authenticated attacker (admin+) to inject scripts. Impact is ...