The Chaty WordPress plugin before 2.8.3 and Chaty Pro WordPress plugin before 2.8.2 do not sanitise and escape the search parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2022-01-03T12:49:12
Updated: 2024-08-03T19:49:14.553Z
Reserved: 2021-01-14T00:00:00
Link: CVE-2021-25016
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-01-03T13:15:08.890
Modified: 2022-01-08T02:39:40.863
Link: CVE-2021-25016
Redhat
No data.