To plugin page

Fixed

WordPress Simple Ajax Chat plugin <= 20220115 - Sensitive Information Disclosure vulnerability

5.3

CVSS 3.1 score Medium severity

Monitoring Coming soon

Find out about vulnerable plugins in your websites for free.

Scan your website

Software

Simple Ajax Chat

Type

Plugin

Vulnerable versions

<= 20220115

Fixed in

20220216

PSID

6ef62bedb68b

CVE ID

CVE-2022-27849

Classification

Sensitive Data Exposure

OWASP Top 10

A3: Sensitive Data Exposure

Required privilege

Can be exploited remotely without any authentication.

Credits

Ex.Mi (Patchstack)

Publicly disclosed

2022-04-15

Details

Sensitive Information Disclosure vulnerability discovered by Ex.Mi (Patchstack) in WordPress Simple Ajax Chat plugin (versions <= 20220115).

Solution

Update the WordPress Simple Ajax Chat plugin to the latest available version (at least 20220216).

References

CVE-2022-27849 Plugin changelog

WordPress Simple Ajax Chat plugin <= 20220115 - Sensitive Information Disclosure vulnerability

Details

Solution

References

Other known vulnerabilities for Simple Ajax Chat

Submit vulnerabilities and become a verified Alliance member

All solutions

WordPress security

Patchstack

Social

All solutions

WordPress Security

Patchstack

Social

© 2022 Patchstack

WordPress Simple Ajax Chat plugin <= 20220115 - Sensitive Information Disclosure vulnerability

Details

Solution

References

Other known vulnerabilities for Simple Ajax Chat

Submit vulnerabilities and become a verified Alliance member

All solutions

WordPress security

Patchstack

Social

All solutions

WordPress Security

Patchstack

Social

© 2022 Patchstack

Let us know if we have missed a vulnerability reported elsewhere

Thank you for contributing!