Description
Cross-site scripting (XSS) vulnerability in Chatbox Plugin 1.0 in e107 0.7.2 allows remote attackers to inject arbitrary HTML or web script via a Chatbox, as demonstrated using a SCRIPT element.
Remediation
References
Related Vulnerabilities
PHP Other Vulnerability (CVE-2015-4644)
WordPress Server-Side Request Forgery (3.7 - 6.1.1)
WordPress Plugin Subscribe to Comments Unsubscribe Challenge Information Disclosure (2.0.2)
WordPress Plugin YARPP-Yet Another Related Posts Cross-Site Scripting (5.30.2)
WordPress Plugin WP Support Plus Responsive Ticket System PHP Object Injection (9.0.3)