Vulnerabilities > Tawk > Tawk TO > Medium

DATE CVE VULNERABILITY TITLE RISK
2025-02-24 CVE-2024-57026 Cross-site Scripting vulnerability in Tawk Tawk.To
TawkTo Widget Version <= 1.3.7 is vulnerable to Cross Site Scripting (XSS) due to processing user input in a way that allows JavaScript execution.
network
low complexity
tawk CWE-79
6.1
6.1