CVE-2024-0898
- EPSS 0.19%
- Veröffentlicht 13.03.2024 16:15:15
- Zuletzt bearbeitet 11.03.2025 13:21:21
The Chat Bubble – Floating Chat with Contact Chat Icons, Messages, Telegram, Email, SMS, Call me back plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 2.3 due to insufficient i...
CVE-2023-48769
- EPSS 0.07%
- Veröffentlicht 18.12.2023 22:15:09
- Zuletzt bearbeitet 21.11.2024 08:32:24
Cross-Site Request Forgery (CSRF) vulnerability in Blue Coral Chat Bubble – Floating Chat with Contact Chat Icons, Messages, Telegram, Email, SMS, Call me back.This issue affects Chat Bubble – Floating Chat with Contact Chat Icons, Messages, Telegram...
CVE-2022-3415
- EPSS 1.13%
- Veröffentlicht 14.11.2022 15:15:48
- Zuletzt bearbeitet 30.04.2025 20:15:18
The Chat Bubble WordPress plugin before 2.3 does not sanitise and escape some contact parameters, which could allow unauthenticated attackers to set Stored Cross-Site Scripting payloads in them, which will trigger when an admin view the related conta...