VYPR
Unrated severityNVD Advisory· Published Jan 3, 2022· Updated Aug 3, 2024

Chaty < 2.8.3 - Reflected Cross-Site Scripting

CVE-2021-25016

Description

The Chaty WordPress plugin before 2.8.3 and Chaty Pro WordPress plugin before 2.8.2 do not sanitise and escape the search parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.