ThreatPress

WordPress Vulnerabilities Database

Back

WordPress WP Live Chat Support Plugin 6.2.03 - XSS

Product
WP Live Chat Support
Description
WP Live Chat Support Plugin 6.2.03 is prone to a Cross-site scripting (XSS) vulnerability. This vulnerability allows to perform a number of arbitrary actions via wp-live-chat-support/functions.php (line 1233).
Solution
Update the plugin. This vulnerability was fixed in 6.2.04.
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
SumOfPwn
Exploit DB
CVE
Name CVE-N/A
Versions
Affected In <= 6.2.03
Fixed In 6.2.04
Disclosure date
2016-09-11
Credits
Dennis Kerdijk & Erwin Kievith