Lucene search
K

24 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-11256

Malware in sbrugna...

4.8CVSS5AI score0.00613EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-29019

Malicious code in bioql PyPI...

6.5CVSS8.6AI score0.00337EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 7:40 a.m.12 views

CVE-2024-31108

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iFlyChat Team iFlyChat – WordPress Chat iflychat allows Stored XSS.This issue affects iFlyChat – WordPress Chat: from n/a through 4.7.2...

6.5CVSS6.7AI score0.00337EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:4 p.m.5 views

CVE-2021-24343

The iFlyChat WordPress plugin before 4.7.0 does not sanitise its APP ID setting before outputting it back in the page, leading to an authenticated Stored Cross-Site Scripting issue...

4.8CVSS5.8AI score0.00613EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2024/04/03 12:0 a.m.12 views

iFlyChat – WordPress Chat <= 4.7.2 - Authenticated (Contributor+) Stored Cross-Site Scripting

Description The iFlyChat – WordPress Chat plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 4.7.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-level access and...

6.5CVSS5.8AI score0.00337EPSS
Exploits0References1
OSV
OSV
added 2024/03/31 7:15 p.m.3 views

CVE-2024-31108

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iFlyChat Team iFlyChat – WordPress Chat iflychat allows Stored XSS.This issue affects iFlyChat – WordPress Chat: from n/a through 4.7.2...

5.4CVSS5.8AI score0.00337EPSS
Exploits0References1
NVD
NVD
added 2024/03/31 7:15 p.m.19 views

CVE-2024-31108

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iFlyChat Team iFlyChat – WordPress Chat iflychat allows Stored XSS.This issue affects iFlyChat – WordPress Chat: from n/a through 4.7.2...

6.5CVSS6.4AI score0.00337EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/31 6:59 p.m.14 views

CVE-2024-31108 WordPress iFlyChat plugin <= 4.7.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iFlyChat Team iFlyChat – WordPress Chat iflychat allows Stored XSS.This issue affects iFlyChat – WordPress Chat: from n/a through 4.7.2...

6.5CVSS6.8AI score0.00337EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/31 6:59 p.m.28 views

CVE-2024-31108 WordPress iFlyChat plugin <= 4.7.2 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iFlyChat Team iFlyChat – WordPress Chat iflychat allows Stored XSS.This issue affects iFlyChat – WordPress Chat: from n/a through 4.7.2...

6.5CVSS6.6AI score0.00337EPSS
Exploits0References1
CVE
CVE
added 2024/03/31 6:59 p.m.59 views

CVE-2024-31108

CVE-2024-31108 relates to iFlyChat – WordPress Chat (plugin), with a Stored XSS vulnerability in the web page generation input handling. The issue affects iFlyChat – WordPress Chat from n/a through 4.7.2, per the description. The connected data notes the vulnerability as a vulnerability in an act...

6.5CVSS6.7AI score0.00337EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/03/31 12:0 a.m.7 views

WordPress Plugin iFlyChat 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

6.5CVSS7.6AI score0.00337EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2024/03/31 12:0 a.m.5 views

PT-2024-23777 · WordPress · Iflychat

Name of the Vulnerable Software and Affected Versions: iFlyChat – WordPress Chat versions through 4.7.2 Description: The issue is related to improper neutralization of input during web page generation, also known as Cross-site Scripting. This allows for Stored XSS. Recommendations: For versions...

6.5CVSS9.2AI score0.00337EPSS
Exploits0References4
Patchstack
Patchstack
added 2024/03/29 12:17 p.m.7 views

WordPress iFlyChat plugin <= 4.7.2 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by LVT-tholv2k Patchstack Alliance in WordPress Plugin iFlyChat – WordPress Chat versions = 4.7.2...

6.5CVSS7.1AI score0.00337EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/03/29 12:0 a.m.19 views

WordPress iFlyChat – WordPress Chat Plugin <= 4.7.2 is vulnerable to Cross Site Scripting (XSS)

Software iFlyChat – WordPress Chat Type Plugin Vulnerable versions = 4.7.2 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-31108 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d092a7fe63ad Credits LVT-tholv2k Required privilege...

6.5CVSS6.6AI score0.00337EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2021/06/09 12:0 a.m.7 views

WordPress plugin cross-site scripting vulnerability (CNVD-2021-40771)

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports PHP and MySQL servers to set up a personal blog site.WordPress Plugin is a WordPress open source application plugin . A cross-site scripting vulnerability exists in iFlyChat -...

4.8CVSS5.1AI score0.00613EPSS
Exploits2References1
NVD
NVD
added 2021/06/07 11:15 a.m.9 views

CVE-2021-24343

The iFlyChat WordPress plugin before 4.7.0 does not sanitise its APP ID setting before outputting it back in the page, leading to an authenticated Stored Cross-Site Scripting issue...

4.8CVSS0.00613EPSS
Exploits2References1
OSV
OSV
added 2021/06/07 11:15 a.m.2 views

CVE-2021-24343

The iFlyChat WordPress plugin before 4.7.0 does not sanitise its APP ID setting before outputting it back in the page, leading to an authenticated Stored Cross-Site Scripting issue...

4.8CVSS5.8AI score0.00613EPSS
Exploits2References1
Prion
Prion
added 2021/06/07 11:15 a.m.10 views

Cross site scripting

The iFlyChat WordPress plugin before 4.7.0 does not sanitise its APP ID setting before outputting it back in the page, leading to an authenticated Stored Cross-Site Scripting issue...

3.5CVSS4.9AI score0.00613EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2021/06/07 10:49 a.m.15 views

CVE-2021-24343 iFlyChat – WordPress Chat < 4.7.0 - Admin+ Stored Cross-Site Scripting (XSS)

The iFlyChat WordPress plugin before 4.7.0 does not sanitise its APP ID setting before outputting it back in the page, leading to an authenticated Stored Cross-Site Scripting issue...

5.1AI score0.00613EPSS
Exploits2References1
CVE
CVE
added 2021/06/07 10:49 a.m.50 views

CVE-2021-24343

Vulnerability summary (CVE-2021-24343) : The WordPress iFlyChat – WordPress Chat plugin (versions ≤ 4.6.4) is affected by an authenticated stored XSS due to the plugin outputting the APP ID setting without sanitization. Root cause: lack of proper sanitization of APP ID before page output. Impact:...

4.8CVSS4.9AI score0.00613EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder