| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2024-11686 | WhatsApp click to chat <= 3.0.4 - Reflected Cross-Site Scripting | manycontacts | WhatsApp π click to chat | Medium | 6.1 | 2025-01-09 11:11:01 | Deep Dive |
| CVE-2024-12464 | Chatroll Live Chat <= 2.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | chatroll | Chatroll Live Chat | Medium | 6.4 | 2025-01-07 05:23:55 | Deep Dive |
| CVE-2024-12457 | Chat Support for Viber β Chat Bubble and Chat Button for Gutenberg, Elementor and Shortcode <= 1.7.3 - Authenticated (Contributor+) Stored Cross-Site Scripting | faysal61 | Chat Support for Viber β Chat Bubble and Chat Button for Gutenberg, Elementor and Shortcode | Medium | 6.4 | 2025-01-07 04:22:15 | Deep Dive |
| CVE-2024-12541 | Chative Live chat and Chatbot <= 1.1 - Cross-Site Request Forgery via add_chative_widget_action Function | chative | Chative Live chat and Chatbot | Medium | 5.4 | 2025-01-07 03:21:56 | Deep Dive |
| CVE-2025-0172 | code-projects Chat System deleteroom.php sql injection | code-projects | Chat System | Medium | 6.3 | 2025-01-02 15:31:06 | Deep Dive |
| CVE-2025-0171 | code-projects Chat System deleteuser.php sql injection | code-projects | Chat System | Medium | 6.3 | 2025-01-02 15:00:21 | Deep Dive |
| CVE-2024-38790 | WordPress Smartsupp plugin <= 3.6 - Cross Site Request Forgery (CSRF) vulnerability | Smartsupp | Smartsupp β live chat, chatbots, AI and lead generation | Medium | 6.5 | 2025-01-02 12:01:09 | Deep Dive |
| CVE-2023-45828 | WordPress RumbleTalk Live Group Chat plugin <= 6.2.5 - Broken Access Control vulnerability | RumbleTalk | RumbleTalk Live Group Chat | δΈε± | - | 2025-01-02 11:59:56 | Deep Dive |
| CVE-2024-13039 | code-projects Simple Chat System add_user.php sql injection | code-projects | Simple Chat System | Medium | 6.3 | 2024-12-30 04:31:05 | Deep Dive |
| CVE-2024-13036 | code-projects Chat System update_room.php sql injection | code-projects | Chat System | Medium | 6.3 | 2024-12-30 03:00:15 | Deep Dive |
| CVE-2024-13035 | code-projects Chat System update_user.php sql injection | code-projects | Chat System | Medium | 6.3 | 2024-12-30 02:31:05 | Deep Dive |
| CVE-2024-13034 | code-projects Chat System update_user.php cross site scripting | code-projects | Chat System | Low | 3.5 | 2024-12-30 02:00:15 | Deep Dive |
| CVE-2024-13033 | code-projects Chat System chatroom.php cross site scripting | code-projects | Chat System | Low | 3.5 | 2024-12-30 01:31:05 | Deep Dive |
| CVE-2024-13020 | code-projects Chat System chatroom.php sql injection | code-projects | Chat System | Medium | 6.3 | 2024-12-29 19:00:13 | Deep Dive |
| CVE-2024-13019 | code-projects Chat System Chat Room Page update_room.php cross site scripting | code-projects | Chat System | Low | 3.5 | 2024-12-29 18:31:05 | Deep Dive |
| CVE-2024-11885 | NinjaTeam Chat for Telegram <= 1.0 - Authenticated (Contributor+) Stored Cross-Site Scripting | ninjateam | WP Telegram Chat Widget | Medium | 6.4 | 2024-12-24 05:23:43 | Deep Dive |
| CVE-2024-11893 | Spoki β Chat Buttons and WooCommerce Notifications <= 2.15.15 - Authenticated (Contributor+) Stored Cross-Site Scripting | spoki | Spoki β Chat Buttons and WooCommerce Notifications | Medium | 6.4 | 2024-12-20 06:59:09 | Deep Dive |
| CVE-2024-11813 | Pulsating Chat Button <= 1.4.1 - Cross-Site Request Forgery to Stored Cross-Site Scripting | aminshah74 | Pulsating Chat Button | Medium | 6.1 | 2024-12-04 02:40:27 | Deep Dive |
| CVE-2024-52489 | WordPress Add Chat App Button plugin <= 2.1.5 - Cross Site Scripting (XSS) vulnerability | udidol | Add Chat App Button | Medium | 5.9 | 2024-12-02 13:48:55 | Deep Dive |
| CVE-2024-32965 | ssrf vulnerability in lobe-chat | lobehub | lobe-chat | High | 8.1 | 2024-11-26 18:25:56 | Deep Dive |