TechyTalk Quick Chat WordPress Plugin All up to the latest is affected by: SQL Injection. The impact is: Access to the database. The component is: like_escape is used in Quick-chat.php line 399. The attack vector is: Crafted ajax request.
References
Link | Resource |
---|---|
https://metalamin.github.io/Quick-Chat-SQLi-EN/ | Not Applicable Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: dwf
Published: 2019-07-18T15:49:16
Updated: 2019-07-18T15:49:16
Reserved: 2019-03-20T00:00:00
Link: CVE-2019-1010104
JSON object: View
NVD Information
Status : Analyzed
Published: 2019-07-18T16:15:11.890
Modified: 2019-07-23T16:47:25.170
Link: CVE-2019-1010104
JSON object: View
Redhat Information
No data.
CWE