WordPress Plugin Vulnerabilities

Zopim Live Chat <= 1.2.5 - XSS in ZeroClipboard

Description

The Zendesk Chat WordPress plugin was affected by a XSS in ZeroClipboard security vulnerability.

Affects Plugins

Plugin icon
zopim-live-chat
Fixed in 1.2.6

References

CVE
CVE-2013-1808
URL
https://www.openwall.com/lists/oss-security/2013/03/10/2
URL
https://en.0day.today/exploits/20396

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified
No
WPVDB ID
7eb96536-6052-4bf9-88f2-e9ab3a30ea3f

Timeline

Publicly Published
2014-08-01 (about 11 years ago)
Added
2014-08-01 (about 11 years ago)
Last Updated
2019-10-21 (about 6 years ago)

Other

Published
Title
Published
2025-02-12
Title
LTL Freight Quotes – Unishippers Edition < 2.5.9 - Reflected Cross-Site Scripting
Published
2023-10-12
Title
Embed Calendly < 3.7 Contributor+ Stored XSS
Published
2023-01-24
Title
Product Slider and Carousel with Category for WooCommerce < 2.8 - Contributor+ Stored XSS via Shortcode
Published
2025-01-16
Title
WP Smart Tooltip <= 1.0.0 - Authenticated (Subscriber+) Stored Cross-Site Scripting
Published
2023-06-05
Title
Accordion & FAQ < 1.9.9 - Reflected XSS