← back
CVE-2020-5642

CVE-2020-5642

EPSS 0.8%
Cross-site request forgery (CSRF) vulnerability in Live Chat - Live support version 3.1.0 and earlier allows remote attackers to hijack the authentication of administrators via unspecified vectors.
Affected products
onWebChat · Live Chat - Live support

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://jvn.jp/en/jp/JVN92404841/index.htmlhttps://plugins.trac.wordpress.org/changeset?new=2384440%40onwebchat&old=2364589%40onwebchathttps://wordpress.org/plugins/onwebchat/