Live Chat with Messenger Customer Chat, db52671f3fd1b0e4249107995bd1d5860764ac96

CVE, Research URL: db52671f3fd1b0e4249107995bd1d5860764ac96
Home page URL: Security reports for Live Chat with Messenger Customer Chat
Application: Live Chat with Messenger Customer Chat
Published on: May 17, 2019
Research Description: Live Chat with Messenger Customer Chat [fb-messenger-live-chat] < 1.4.7 Live Chat with Messenger Customer Chat <= 1.4.6 - Unauthenticated Stored Cross-Site Scripting The 'Live Chat with Messenger Customer Chat' plugin for WordPress is vulnerable to Stored Cross-Site Scripting in versions up to, and including, 1.4.6 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions: max 1.4.7.
Status: vulnerable