Floating Chat Widget Security Vulnerabilities and Issues — Floating Chat Widget CVE List

Lucene search

PremioFloating Chat Widget

3 matches found

CVE•added 2025/02/27 10:15 a.m.•124 views

CVE-2025-1450

The Floating Chat Widget: Contact Chat Icons, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button, WhatsApp – Chaty plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘data-hover’ parameter in all versions up to, and including, 3.3.5 due to insufficient input sanit...

6.4CVSS5.7AI score0.0006EPSS

CVE•added 2024/04/24 5:15 a.m.•64 views

CVE-2024-2972

The Floating Chat Widget: Contact Chat Icons, WhatsApp, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button WordPress plugin before 3.1.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks...

3.8CVSS7.6AI score0.00069EPSS

CVE•added 2024/06/13 6:15 a.m.•51 views

CVE-2024-4149

The Floating Chat Widget: Contact Chat Icons, WhatsApp, Telegram Chat, Line Messenger, WeChat, Email, SMS, Call Button WordPress plugin before 3.2.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks...

6.1CVSS4.9AI score0.00072EPSS