Share:

CVE-2021-24343 - Iflychat Iflychat

June 7, 2021

Moderate 5.4

The iFlyChat - WordPress Chat plugin through 4.6.4 does not sanitise its APP ID setting before outputting it back in the page, leading to an authenticated Stored Cross-Site Scripting issue

Affected software

Iflychat Iflychat

Reference links

https://wpscan.com/vulnerability/d6c72d90-e321-47b9-957a-6fea7c944293

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.