WordPress Plugin Vulnerabilities

Chatway Live Chat – AI Chatbot, Customer Support, FAQ & Helpdesk Customer Service & Chat Buttons < 1.4.9 - Authenticated (Subscriber+) Information Exposure

Description

The Chatway Live Chat – AI Chatbot, Customer Support, FAQ & Helpdesk Customer Service & Chat Buttons plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 1.4.8. This makes it possible for authenticated attackers, with Subscriber-level access and above, to extract sensitive user or configuration data.

Affects Plugins

Fixed in 1.4.9

References

Classification

Type
SENSITIVE DATA DISCLOSURE
CWE

Miscellaneous

Original Researcher
dodoh4t
Verified
No

Timeline

Publicly Published
2026-06-05 (about 29 days ago)
Added
2026-06-10 (about 23 days ago)
Last Updated
2026-06-10 (about 23 days ago)

Other