PT-2023-24718 · WordPress · Querlo Chatbot
Published
2023-07-17
·
Updated
2024-03-22
·
CVE-2023-3418
None
No severity ratings or metrics are available. When they are, we'll update the corresponding info on the page.
Name of the Vulnerable Software and Affected Versions
Querlo Chatbot WordPress plugin versions 1.2.4 and earlier
Description
The Querlo Chatbot WordPress plugin has a stored Cross-Site Scripting issue due to not escaping or sanitizing chat messages.
Recommendations
For Querlo Chatbot WordPress plugin versions 1.2.4 and earlier, update to a version that addresses the stored Cross-Site Scripting vulnerability.
Exploit
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Querlo Chatbot