0.001 Low
EPSS
Percentile
23.0%
The plugin doesn’t filter user input on chat, leading to bad code inserted on it be reflected on the user dashboard.
1. Enter #"> as the malicious payload into the chatbot input. 2. See XSS vulnerability.
#">