First published: Thu Mar 21 2019(Updated: )
The wp-live-chat-support plugin before 8.0.18 for WordPress has wp-admin/admin.php?page=wplivechat-menu-gdpr-page term XSS.
Credit: cve@mitre.org cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
3cx Live Chat | <8.0.18 | |
<8.0.18 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID for this wp-live-chat-support plugin vulnerability is CVE-2019-9913.
The severity of CVE-2019-9913 is medium with a CVSS score of 6.1.
The affected software for CVE-2019-9913 is the wp-live-chat-support plugin before version 8.0.18 for WordPress.
The CWE ID for CVE-2019-9913 is CWE-79 (Cross-Site Scripting).
To fix the wp-live-chat-support plugin vulnerability, update to version 8.0.18 or later.