CVE-2024-13612 | wordplus Better Messages Plugin up to 2.6.9 on WordPress Shortcode better_messages_live_chat_button cross site scripting

Posted by Angelo Barbosa | Feb 1, 2025 | CVE

A vulnerability has been found in wordplus Better Messages Plugin up to 2.6.9 on WordPress and classified as problematic. This vulnerability affects the function better_messages_live_chat_button of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability was named CVE-2024-13612. The attack can be initiated remotely. There is no exploit available.

CVE-2024-13612 | wordplus Better Messages Plugin up to 2.6.9 on WordPress Shortcode better_messages_live_chat_button cross site scripting

Related Posts

CVE-2024-6752 | Social Auto Poster Plugin up to 5.3.14 on WordPress cross site scripting

CVE-2024-43281 | Void Coders Void Elementor Post Grid Addon for Elementor Page Builder Plugin path traversal

CVE-2017-13315 | Google Android 6/6.0.1/7/8/8.1 DcParamObject.java writeToParcel/createFromParcel permission

CVE-2024-41820 | kubean-io kubean up to 0.17.x permission assignment (ID 1326)