Chatbot with IBM Watson < 0.8.21 - DOM Cross-Site Scripting (XSS)



Description
Note: The issue could be qualified of Self-XSS.

Affects Plugin

fixed in version 0.8.21

References

CVE 2020-7239
URL https://www.hooperlabs.xyz/disclosures/cve-2020-7239.php

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Original Researcher Hooper Labs
Views 3858
Verified No
WPVDB ID 10035

Timeline

Publicly Published 2020-01-21 (about 1 month ago)
Added 2020-01-21 (about 1 month ago)
Last Updated 2020-01-28 (23 days ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin