CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-2470

The Simple Ajax Chat WordPress plugin before 20240412 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 39.7%

CVSS Severity

CVSS v3 Score 5.4

References

Products affected by CVE-2024-2470

Plugin-Planet » Simple Ajax Chat » Version: 20121110

cpe:2.3:a:plugin-planet:simple_ajax_chat:20121110
Plugin-Planet » Simple Ajax Chat » Version: 20121119

cpe:2.3:a:plugin-planet:simple_ajax_chat:20121119
Plugin-Planet » Simple Ajax Chat » Version: 20121206

cpe:2.3:a:plugin-planet:simple_ajax_chat:20121206
Plugin-Planet » Simple Ajax Chat » Version: 20130103

cpe:2.3:a:plugin-planet:simple_ajax_chat:20130103
Plugin-Planet » Simple Ajax Chat » Version: 20130104

cpe:2.3:a:plugin-planet:simple_ajax_chat:20130104
Plugin-Planet » Simple Ajax Chat » Version: 20130712

cpe:2.3:a:plugin-planet:simple_ajax_chat:20130712
Plugin-Planet » Simple Ajax Chat » Version: 20130713

cpe:2.3:a:plugin-planet:simple_ajax_chat:20130713
Plugin-Planet » Simple Ajax Chat » Version: 20130725

cpe:2.3:a:plugin-planet:simple_ajax_chat:20130725
Plugin-Planet » Simple Ajax Chat » Version: 20131105

cpe:2.3:a:plugin-planet:simple_ajax_chat:20131105
Plugin-Planet » Simple Ajax Chat » Version: 20131106

cpe:2.3:a:plugin-planet:simple_ajax_chat:20131106
Plugin-Planet » Simple Ajax Chat » Version: 20131107

cpe:2.3:a:plugin-planet:simple_ajax_chat:20131107
Plugin-Planet » Simple Ajax Chat » Version: 20140123

cpe:2.3:a:plugin-planet:simple_ajax_chat:20140123
Plugin-Planet » Simple Ajax Chat » Version: 20140305

cpe:2.3:a:plugin-planet:simple_ajax_chat:20140305
Plugin-Planet » Simple Ajax Chat » Version: 20140923

cpe:2.3:a:plugin-planet:simple_ajax_chat:20140923
Plugin-Planet » Simple Ajax Chat » Version: 20150316

cpe:2.3:a:plugin-planet:simple_ajax_chat:20150316
Plugin-Planet » Simple Ajax Chat » Version: 20150507

cpe:2.3:a:plugin-planet:simple_ajax_chat:20150507
Plugin-Planet » Simple Ajax Chat » Version: 20150808

cpe:2.3:a:plugin-planet:simple_ajax_chat:20150808
Plugin-Planet » Simple Ajax Chat » Version: 20151110

cpe:2.3:a:plugin-planet:simple_ajax_chat:20151110
Plugin-Planet » Simple Ajax Chat » Version: 20160401

cpe:2.3:a:plugin-planet:simple_ajax_chat:20160401
Plugin-Planet » Simple Ajax Chat » Version: 20160408

cpe:2.3:a:plugin-planet:simple_ajax_chat:20160408
Plugin-Planet » Simple Ajax Chat » Version: 20160811

cpe:2.3:a:plugin-planet:simple_ajax_chat:20160811
Plugin-Planet » Simple Ajax Chat » Version: 20161116

cpe:2.3:a:plugin-planet:simple_ajax_chat:20161116
Plugin-Planet » Simple Ajax Chat » Version: 20170731

cpe:2.3:a:plugin-planet:simple_ajax_chat:20170731
Plugin-Planet » Simple Ajax Chat » Version: 20171023

cpe:2.3:a:plugin-planet:simple_ajax_chat:20171023
Plugin-Planet » Simple Ajax Chat » Version: 20171103

cpe:2.3:a:plugin-planet:simple_ajax_chat:20171103
Plugin-Planet » Simple Ajax Chat » Version: 20171104

cpe:2.3:a:plugin-planet:simple_ajax_chat:20171104
Plugin-Planet » Simple Ajax Chat » Version: 20171105

cpe:2.3:a:plugin-planet:simple_ajax_chat:20171105
Plugin-Planet » Simple Ajax Chat » Version: 20171106

cpe:2.3:a:plugin-planet:simple_ajax_chat:20171106
Plugin-Planet » Simple Ajax Chat » Version: 20180508

cpe:2.3:a:plugin-planet:simple_ajax_chat:20180508
Plugin-Planet » Simple Ajax Chat » Version: 20180820

cpe:2.3:a:plugin-planet:simple_ajax_chat:20180820
Plugin-Planet » Simple Ajax Chat » Version: 20181009

cpe:2.3:a:plugin-planet:simple_ajax_chat:20181009
Plugin-Planet » Simple Ajax Chat » Version: 20181114

cpe:2.3:a:plugin-planet:simple_ajax_chat:20181114
Plugin-Planet » Simple Ajax Chat » Version: 20190220

cpe:2.3:a:plugin-planet:simple_ajax_chat:20190220
Plugin-Planet » Simple Ajax Chat » Version: 20190308

cpe:2.3:a:plugin-planet:simple_ajax_chat:20190308
Plugin-Planet » Simple Ajax Chat » Version: 20190429

cpe:2.3:a:plugin-planet:simple_ajax_chat:20190429
Plugin-Planet » Simple Ajax Chat » Version: 20190902

cpe:2.3:a:plugin-planet:simple_ajax_chat:20190902
Plugin-Planet » Simple Ajax Chat » Version: 20190903

cpe:2.3:a:plugin-planet:simple_ajax_chat:20190903
Plugin-Planet » Simple Ajax Chat » Version: 20191105

cpe:2.3:a:plugin-planet:simple_ajax_chat:20191105
Plugin-Planet » Simple Ajax Chat » Version: 20200315

cpe:2.3:a:plugin-planet:simple_ajax_chat:20200315
Plugin-Planet » Simple Ajax Chat » Version: 20200808

cpe:2.3:a:plugin-planet:simple_ajax_chat:20200808
Plugin-Planet » Simple Ajax Chat » Version: 20201112

cpe:2.3:a:plugin-planet:simple_ajax_chat:20201112
Plugin-Planet » Simple Ajax Chat » Version: 20201124

cpe:2.3:a:plugin-planet:simple_ajax_chat:20201124
Plugin-Planet » Simple Ajax Chat » Version: 20210210

cpe:2.3:a:plugin-planet:simple_ajax_chat:20210210
Plugin-Planet » Simple Ajax Chat » Version: 20210714

cpe:2.3:a:plugin-planet:simple_ajax_chat:20210714
Plugin-Planet » Simple Ajax Chat » Version: 20220115

cpe:2.3:a:plugin-planet:simple_ajax_chat:20220115
Plugin-Planet » Simple Ajax Chat » Version: 20220216

cpe:2.3:a:plugin-planet:simple_ajax_chat:20220216
Plugin-Planet » Simple Ajax Chat » Version: 20220720

cpe:2.3:a:plugin-planet:simple_ajax_chat:20220720
Plugin-Planet » Simple Ajax Chat » Version: 20221003

cpe:2.3:a:plugin-planet:simple_ajax_chat:20221003
Plugin-Planet » Simple Ajax Chat » Version: 20230307

cpe:2.3:a:plugin-planet:simple_ajax_chat:20230307
Plugin-Planet » Simple Ajax Chat » Version: 20230722

cpe:2.3:a:plugin-planet:simple_ajax_chat:20230722
Plugin-Planet » Simple Ajax Chat » Version: 20231101

cpe:2.3:a:plugin-planet:simple_ajax_chat:20231101
Plugin-Planet » Simple Ajax Chat » Version: 20240216

cpe:2.3:a:plugin-planet:simple_ajax_chat:20240216
Plugin-Planet » Simple Ajax Chat » Version: 20240223

cpe:2.3:a:plugin-planet:simple_ajax_chat:20240223
Plugin-Planet » Simple Ajax Chat » Version: 20240318

cpe:2.3:a:plugin-planet:simple_ajax_chat:20240318

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-2470

Products

Pricing

Contact Us