cleantalk
Vulnerabilities and Security Researches

WordLive | Livecall Addon for Woocommerce, 47ef347ab4c22d50e841ed3b78a1c4c225ec0026

CVE, Research URL

47ef347ab4c22d50e841ed3b78a1c4c225ec0026

Home page URL

Security reports for WordLive | Livecall Addon for Woocommerce

Application

WordLive | Livecall Addon for Woocommerce

Published on
Jul 18, 2023
Research Description
WordLive | Livecall Addon for Woocommerce [wordlive-livecall-addon-for-woocommerce] <= 1.2.1 (unfixed) WordPress  WordLive | Livecall Addon for Woocommerce Plugin <= 1.2.1 is vulnerable to Cross Site Scripting (XSS) No patched version available. Rafie Muhammad (Patchstack) discovered and reported this Cross Site Scripting (XSS) vulnerability in WordPress  WordLive | Livecall Addon for Woocommerce Plugin. This could allow a malicious actor to inject malicious scripts, such as redirects, advertisements, and other HTML payloads into your website which will be executed when guests visit your site. This vulnerability has not been known to be fixed yet.
Affected versions
max 1.2.1.
Status
vulnerable
Previous vulnerability researches
WordLive | Livecall Addon for Woocommerce (47ef347ab4c22d50e841ed3b78a1c4c225ec0026) , Jun 07, 2024
New vulnerability
Security & Malware scan by CleanTalk , Apr 03, 2026
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX &#8211; Best FOMO, Social Proof, WooCommerce Sales Popup &amp; Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System &#8211; Booking Calendar (CVE-2025-68515) , Mar 31, 2026