CVE-2020-7239

CVE-2020-7239

EPSS 1.4%

The conversation-watson plugin before 0.8.21 for WordPress has a DOM-based XSS vulnerability that is executed when a chat message containing JavaScript is sent.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://wordpress.org/plugins/conversation-watson/#developers https://wpvulndb.com/vulnerabilities/10035 https://www.hooperlabs.xyz/disclosures/cve-2020-7239.php