2 matches found
CVE-2023-1020
The CVE-2023-1020 entry concerns the WordPress plugin Steveas WP Live Chat Shoutbox, affected in versions up to 1.4.2. The root cause is a SQL injection vulnerability caused by unsanitized/uncleaned parameters in an AJAX action accessible to unauthenticated users, enabling arbitrary SQL execution...
CVE-2023-0899
The CVE-2023-0899 entry concerns the Steveas WP Live Chat Shoutbox WordPress plugin (