Zoho SalesIQ <= 1.0.8 - XSS & CSRF

Affects Plugin

fixed in version 1.0.9

References

CVE 2019-15645
CVE 2019-15644
CVE 2019-5962
CVE 2019-5963
URL https://jvn.jp/en/jp/JVN88962935/index.html
URL https://plugins.trac.wordpress.org/changeset/2084532/zoho-salesiq

Classification

Type MULTI

Miscellaneous

Original Researcher Kouhei Ikeda of Cryptography Laboratory
Submitter Ryan Dewhurst
Submitter Website https://wpscan.io
Submitter Twitter ethicalhack3r
Views 3505
Verified No
WPVDB ID 9433

Timeline

Publicly Published 2019-05-31 (6 months ago)
Added 2019-07-09 (4 months ago)
Last Updated 2019-08-27 (3 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin