Unrated severityNVD Advisory· Published Jan 3, 2022· Updated Aug 3, 2024
Chaty < 2.8.3 - Reflected Cross-Site Scripting
CVE-2021-25016
Description
The Chaty WordPress plugin before 2.8.3 and Chaty Pro WordPress plugin before 2.8.2 do not sanitise and escape the search parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
3- WordPress/Chatydescription
Patches
Vulnerability mechanics
References
1- wpscan.com/vulnerability/b5035987-6227-4fc6-bc45-1e8016e5c4c0mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.