Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 305 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-49356 WordPress Orders Chat for WooCommerce plugin <= 1.2.0 - Broken Access Control vulnerability Mykola LukinOrders Chat for WooCommerce Medium 4.3 2025-12-31 16:07:40 Deep Dive
CVE-2025-14154 Better Messages – Live Chat for WordPress, BuddyPress, PeepSo, Ultimate Member, BuddyBoss <= 2.10.2 - Unauthenticated Stored Cross-Site Scripting wordplusBetter Messages – Live Chat, Chat Rooms, Real-Time Messaging & Private Messages Medium 6.1 2025-12-17 05:24:55 Deep Dive
CVE-2025-13880 WP Social Ninja - Embed Social Feeds, Customer Reviews, Chat Widgets (Google Reviews, YouTube Feed, Photo Feeds, and More) <= 4.0.1 - Missing Authorization to Unauthenticated Plugin's Settings Disclosure And Modification adreastrianWP Social Ninja – Embed Social Feeds, User Reviews & Chat Widgets Medium 6.5 2025-12-17 04:31:31 Deep Dive
CVE-2025-13408 Foxtool All-in-One: Contact chat button, Custom login, Media optimize images <= 2.5.2 - Cross-Site Request Forgery to Google OAuth Connection foxthemeFoxtool All-in-One: Contact chat button, Custom login, Media optimize images Medium 4.3 2025-12-12 03:20:44 Deep Dive
CVE-2025-13007 WP Social Ninja – Embed Social Feeds, Customer Reviews, Chat Widgets (Google Reviews, YouTube Feed, Photo Feeds, and More) <= 3.20.3 - Unauthenticated Stored Cross-Site Scripting via External Content Import adreastrianWP Social Ninja – Embed Social Feeds, User Reviews & Chat Widgets Medium 6.1 2025-12-02 06:40:24 Deep Dive
CVE-2025-13526 OneClick Chat to Order <= 1.0.8 - Insecure Direct Object Reference to Unauthenticated Sensitive Information Exposure walterpinemOneClick Chat to Order High 7.5 2025-11-22 11:08:39 Deep Dive
CVE-2025-66113 WordPress Better Chat Support for Messenger plugin <= 1.2.18 - Broken Access Control vulnerability ThemeAtelierBetter Chat Support for Messenger Medium 5.3 2025-11-21 12:30:06 Deep Dive
CVE-2025-66099 WordPress Chat Help plugin <= 3.1.3 - Broken Access Control vulnerability ThemeAtelierChat Help 中危 -2025-11-21 12:30:01 Deep Dive
CVE-2025-12751 WSChat – WordPress Live Chat <= 3.1.6 - Missing Authorization to Authenticated (Subscriber+) Settings Reset elextensionsWSChat – WordPress Live Chat Medium 4.3 2025-11-19 05:45:11 Deep Dive
CVE-2025-12078 ArtiBot Free Chat Bot for WebSites <= 1.1.7 - Reflected Cross-Site Scripting via PostMessage artibotArtiBot Free Chat Bot for WebSites Medium 6.1 2025-11-18 08:27:38 Deep Dive
CVE-2025-62449 Microsoft Visual Studio Code CoPilot Chat Extension Security Feature Bypass Vulnerability MicrosoftMicrosoft Visual Studio Code CoPilot Chat Extension Medium 6.8 2025-11-11 17:59:50 Deep Dive
CVE-2025-62222 Agentic AI and Visual Studio Code Remote Code Execution Vulnerability MicrosoftMicrosoft Visual Studio Code CoPilot Chat Extension High 8.8 2025-11-11 17:59:49 Deep Dive
CVE-2025-11829 Five9 Live Chat <= 1.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting five9Five9 Live Chat Medium 6.4 2025-11-11 03:30:35 Deep Dive
CVE-2025-11576 AI Chatbot Free Models – Customer Support, Live Chat, Virtual Assistant <= 1.6.5 - Unauthenticated CSV Injection newcodebyteAI Chatbot Free Models – Customer Support, Live Chat, Virtual Assistant Medium 4.3 2025-10-24 12:29:57 Deep Dive
CVE-2025-53422 WordPress WhatsApp Chat for WordPress and WooCommerce plugin <= 1.2.1 - Cross Site Scripting (XSS) vulnerability ThemeWarriorsWhatsApp Chat for WordPress and WooCommerce--2025-10-22 14:32:33 Deep Dive
CVE-2025-8349 Cross-Site Scripting (XSS) stored in Tawk Live Chat TawkLive Chat--2025-10-20 09:56:04 Deep Dive
CVE-2025-62505 SSRF in lobehub/lobe-chat with native web fetch module lobehublobe-chat Low 3.0 2025-10-17 18:18:54 Deep Dive
CVE-2025-10660 WP Dashboard Chat <= 1.0.3 - Authenticated (Contributor+) SQL Injection via id nicholasboschWP Dashboard Chat Medium 6.5 2025-10-15 08:25:51 Deep Dive
CVE-2025-59286 Copilot Information Disclosure Vulnerability MicrosoftMicrosoft 365 Copilot's Business Chat Critical 9.3 2025-10-09 21:04:15 Deep Dive
CVE-2025-59272 Copilot Information Disclosure Vulnerability MicrosoftMicrosoft 365 Copilot's Business Chat Critical 9.3 2025-10-09 21:04:14 Deep Dive