PT-2023-22679 · WordPress · Autochat Automatic Conversation

Rafael B

Publicado

2023-07-17

Atualizado

2023-07-26

CVE-2023-3041

CVSS v3.1

6.1

Média

Vetor

AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

Name of the Vulnerable Software and Affected Versions Autochat Automatic Conversation WordPress plugin versions 1.1.7 and earlier

Description The issue is related to the lack of sanitization and escaping of user input before it is outputted back on the page. This leads to a cross-site scripting attack.

Recommendations For Autochat Automatic Conversation WordPress plugin versions 1.1.7 and earlier, update to a version that properly sanitizes and escapes user input to prevent cross-site scripting attacks.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2023-3041

Produtos afetados

Autochat Automatic Conversation

PT-2023-22679 · WordPress · Autochat Automatic Conversation

CVE-2023-3041

Identificadores relacionados

Produtos afetados

Referências · 4