Chaty PRO

DATE	CVE	VULNERABILITY TITLE	RISK
2022-01-03	CVE-2021-25016	Cross-site Scripting vulnerability in Premio Chaty and Chaty PRO The Chaty WordPress plugin before 2.8.3 and Chaty Pro WordPress plugin before 2.8.2 do not sanitise and escape the search parameter before outputting it back in the admin dashboard, leading to a Reflected Cross-Site Scripting network premio CWE-79	4.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.