CVE-2023-3418

Опубликовано: 17 июл. 2023

Источник: nvd

Описание

Rejected reason: The issue is not in the plugin itself but the underlying chat service

GHSA-7wqj-mf32-4f2r

CVSS3: 5.4

github

больше 2 лет назад

The Querlo Chatbot WordPress plugin through 1.2.4 does not escape or sanitize chat messages, leading to a stored Cross-Site Scripting vulnerability.