CVE-2020-7239

CVE-2020-7239

EPSS 1.4%

The conversation-watson plugin before 0.8.21 for WordPress has a DOM-based XSS vulnerability that is executed when a chat message containing JavaScript is sent.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://wordpress.org/plugins/conversation-watson/#developers https://wpvulndb.com/vulnerabilities/10035 https://www.hooperlabs.xyz/disclosures/cve-2020-7239.php