Jivochat

jivochat

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Jivochat

jivochat

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2022-0642 1Jivochat 1Jivochat Jun 17, 2026 May 30, 2022 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 The JivoChat Live Chat WordPress plugin before 1.3.5.4 does not properly check CSRF tokens on POST requests to the plugins admin page, and does not sanitise some parameters, leading to a stored Cross-Site Scripting vulne...Show more The JivoChat Live Chat WordPress plugin before 1.3.5.4 does not properly check CSRF tokens on POST requests to the plugins admin page, and does not sanitise some parameters, leading to a stored Cross-Site Scripting vulnerability where an attacker can trick a logged in administrator to inject arbitrary javascript.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2022-0642

1Jivochat

Jun 17, 2026

May 30, 2022

N/A· v4

5.4 MEDIUM· v3

3.5 LOW· v2

The JivoChat Live Chat WordPress plugin before 1.3.5.4 does not properly check CSRF tokens on POST requests to the plugins admin page, and does not sanitise some parameters, leading to a stored Cross-Site Scripting vulne...Show more