CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Cvelist•added 2025/09/03 2:36 p.m.•8 views

CVE-2025-58626 WordPress RumbleTalk Live Group Chat Plugin <= 6.3.5 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in RumbleTalk RumbleTalk Live Group Chat rumbletalk-chat-a-chat-with-themes allows Stored XSS.This issue affects RumbleTalk Live Group Chat: from n/a through = 6.3.5...

6.5CVSS0.00047EPSS

Exploits0References1

Vulnrichment•added 2025/09/03 2:36 p.m.•1 views

CVE-2025-58626 WordPress RumbleTalk Live Group Chat Plugin <= 6.3.5 - Cross Site Scripting (XSS) Vulnerability

6.5CVSS5.9AI score0.00047EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 7:18 a.m.•3 views

CVE-2024-8720

The RumbleTalk Live Group Chat – HTML5 plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'rumbletalk-admin-button' shortcode in all versions up to, and including, 6.3.0 due to insufficient input sanitization and output escaping on user supplied attributes. This...

6.4CVSS5.8AI score0.00233EPSS

Exploits0References1

Positive Technologies•added 2024/10/01 12:0 a.m.•2 views

PT-2024-39200 · WordPress · Rumbletalk Live Group Chat

Name of the Vulnerable Software and Affected Versions: RumbleTalk Live Group Chat – HTML5 plugin for WordPress versions up to, and including, 6.3.0 Description: The issue is related to Stored Cross-Site Scripting via the plugin's 'rumbletalk-admin-button' shortcode due to insufficient input...

6.4CVSS6.1AI score0.00233EPSS

Exploits0References7