Clickdesk : Security Vulnerabilities, CVEs, (XSS)
ClickDesk version 4.3 and below has persistent cross site scripting
Max CVSS
6.1
EPSS Score
0.18%
Published
2020-01-14
Updated
2020-02-05
Cross-site scripting (XSS) vulnerability in clickdesk.php in ClickDesk Live Support - Live Chat plugin 2.0 for WordPress allows remote attackers to inject arbitrary web script or HTML via the cdwidgetid parameter. NOTE: some of these details are obtained from third party information.
Max CVSS
4.3
EPSS Score
0.43%
Published
2012-09-20
Updated
2018-10-09
2 vulnerabilities found