Description
Cross-site scripting (XSS) vulnerability in Chatbox Plugin 1.0 in e107 0.7.2 allows remote attackers to inject arbitrary HTML or web script via a Chatbox, as demonstrated using a SCRIPT element.
Remediation
References
Related Vulnerabilities
MySQL CVE-2022-39410 Vulnerability (CVE-2022-39410)
WordPress Plugin Carts Guru PHP Object Injection (1.4.5)
WordPress Plugin WP e-Commerce Predictive Search Cross-Site Scripting (1.1.1)
WordPress Plugin WP Sudoku Plus Unspecified Vulnerability (1.4)
WordPress Plugin WordPress Download Manager Directory Traversal (2.6.95)