WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

Acobot Live Chat & Contact Form <= 2.0 - CSRF/XSS

Description

The acobot WordPress plugin was affected by a CSRF/XSS security vulnerability.

Affects Plugins

acobot
No known fix - plugin closed

References

CVE
CVE-2015-2039
URL
https://packetstormsecurity.com/files/130306/

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Submitter

ethicalhack3r

Submitter twitter
ethicalhack3r
Verified

No

WPVDB ID
8325f202-0b50-4990-89cd-dbb4e94bf33d

Timeline

Publicly Published

2015-02-22 (about 8 years ago)

Added

2015-02-10 (about 8 years ago)

Last Updated

2020-10-25 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin