All 6 CVE vulnerabilities found in WP Chat App, with AI-generated Chinese analysis, references, and POCs.
Vendor: NinjaTeam
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2024-10533 | WP Chat App <= 3.6.8 - Missing Authorization to Authenticated (Subscriber+) Filebird Plugin Installation CWE-862 | 4.3 | Medium | 2024-11-16 |
| CVE-2024-4664 | WP Chat App < 3.6.5 - Admin+ Stored XSS | 4.8AI | MediumAI | 2024-06-27 |
| CVE-2024-2837 | WP Chat App < 3.6.4 - Admin+ Stored XSS | 4.8AI | MediumAI | 2024-04-26 |
| CVE-2024-2513 | WP Chat App <= 3.6.2 - Authenticated(Contributor+) Stored Cross-Site Scripting via Block Image Attribute CWE-20 | 6.4 | Medium | 2024-04-09 |
| CVE-2024-1761 | WP Chat App <= 3.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Block Attributes CWE-79 | 6.4 | Medium | 2024-03-07 |
| CVE-2023-51370 | WordPress WP Chat App Plugin <= 3.4.4 is vulnerable to Cross Site Scripting (XSS) CWE-79 | 5.9 | Medium | 2024-02-12 |
All 6 known CVE vulnerabilities affecting WP Chat App with full Chinese analysis, references, and POCs where available.