Home » Vulnerabilities » Input validation vulnerability in Chat Button: WhatsApp, Facebook Messenger Chat, Telegram Chat, WeChat, Line Chat, Discord Chat for Customer Support Chat with floating Chat Widget 1.2

Latest

Input validation vulnerability in Chat Button: WhatsApp, Facebook Messenger Chat, Telegram Chat, WeChat, Line Chat, Discord Chat for Customer Support Chat with floating Chat Widget 1.2

CVE-2023-51371

Severity: medium-risk
Status: Fixed
Publication: September 18, 2023

The Bit Assist plugin for WordPress is vulnerable to a security issue which can be exploited by attackers who have administrator-level access to the website. This vulnerability exists in versions up to and including 1.1.9, and it allows them to inject arbitrary web scripts into pages of the website. These scripts will run anytime someone visits the page. This vulnerability only affects multi-site installations and installations where unfiltered_html has been disabled.

Detected in:

Chat Button: WhatsApp, Facebook Messenger Chat, Telegram Chat, WeChat, Line Chat, Discord Chat for Customer Support Chat with floating Chat Widget fixed vulnerable versions:

Chat Button: WhatsApp, Facebook Messenger Chat, Telegram Chat, WeChat, Line Messenger, Discord Chat for Customer Support Chat with floating Chat Widget fixed vulnerable versions:

Chat Widget: Customer Support Button with floating Chat, SMS, Call Button, Live Chat Support Chat Button – Bit Assist fixed vulnerable versions:

Chat Widget: Customer Support Button with SMS Call Button, Click to Chat Messenger Live Chat Support Chat Button – Bit Assist fixed vulnerable versions:

Chat Widget: Floating Customer Support Button for 30+ Channels, Supporting SMS, Calls, and Chat – Bit Assist fixed vulnerable versions:

Chat Widget: WhatsApp Chat, Facebook Messenger Chat, Telegram Chat Bubble, Line Messenger, Live Chat Support Chat Button, WeChat, SMS, Call Button, Customer Support Button with floating Chat Widget fixed vulnerable versions:

WhatsApp,Facebook Messenger, Telegram Chat, Live Chat, WeChat, Call Button, Line, TikTok & 30+ Chat Button for Customer Support Chat with floating Chat Widget Button – Bit Assist fixed vulnerable versions:

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Input validation vulnerability in Chat Button: WhatsApp, Facebook Messenger Chat, Telegram Chat, WeChat, Line Chat, Discord Chat for Customer Support Chat with floating Chat Widget 1.2

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles

Latest

Passkeys: no need for Limit Login Attempts?

Configuring Really Simple Security with WP-CLI

How to Fix The “Link you followed has Expired” error on WordPress

404 not found errors

Protecting site visitors with Security Headers

Hardening your website’s security

Input validation vulnerability in Chat Button: WhatsApp, Facebook Messenger Chat, Telegram Chat, WeChat, Line Chat, Discord Chat for Customer Support Chat with floating Chat Widget 1.2

Detected in: