Description
WordPress Plugin WP-Live Chat by 3CX is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin WP-Live Chat by 3CX version 8.0.37 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 8.1.0 or latest
References
Related Vulnerabilities
Internet Information Services Other Vulnerability (CVE-1999-1451)
Plone CMS CVE-2024-23756 Vulnerability (CVE-2024-23756)
WordPress Plugin WP Armour-Honeypot Anti Spam Cross-Site Scripting (1.5.6)
WordPress Plugin Wp-ImageZoom SQL Injection (1.0.7)
Envoy Proxy Improper Null Termination Vulnerability (CVE-2025-66220)