CVE-2023-47759: WordPress Chaty Plugin <= 3.1.2 is vulnerable to Cross Site Scripting (XSS)
First published: Wed Nov 22 2023(Updated: )
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Premio Chaty plugin <= 3.1.2 versions.
Credit: audit@patchstack.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Premio Chaty | <3.1.3 |
Remedy
Update to 3.1.3 or a higher version.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this WordPress Chaty Plugin vulnerability?
The vulnerability ID is CVE-2023-47759.
What is the severity of the CVE-2023-47759 vulnerability?
The severity of the CVE-2023-47759 vulnerability is medium with a score of 5.9.
What is affected by the CVE-2023-47759 vulnerability?
The Premio Chaty plugin versions <= 3.1.2 for WordPress are affected by the CVE-2023-47759 vulnerability.
How does the CVE-2023-47759 vulnerability manifest?
The CVE-2023-47759 vulnerability manifests as a Cross Site Scripting (XSS) vulnerability.
Are there any patches or fixes available for the CVE-2023-47759 vulnerability?
Yes, you can find patches and fixes for the CVE-2023-47759 vulnerability at [this link](https://patchstack.com/database/vulnerability/chaty/wordpress-chaty-plugin-3-1-2-cross-site-scripting-xss-vulnerability?_s_id=cve).
- collector/nvd-api
- agent/type
- agent/event
- agent/softwarecombine
- agent/first-publish-date
- agent/author
- agent/weakness
- agent/remedy
- agent/references
- agent/severity
- agent/title
- agent/tags
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/source
- vendor/premio
- canonical/premio chaty