CVE-2022-2361 – Social Chat < 6.0.5 - Admin+ Stored Cross-Site Scripting

https://notcve.org/view.php?id=CVE-2022-2361

18 Jul 2022 — The WP Social Chat WordPress plugin before 6.0.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks. El plugin WP Social Chat de WordPress versiones anteriores a 6.0.5, no sanea y escapa de algunas de sus configuraciones, lo que podría permitir a usuarios con altos privilegios, como el administrador, llevar a cabo ataques de tipo Cross-Site Scripting Almacenado. The WP Social Chat plugin for WordPress is vuln... • https://wpscan.com/vulnerability/aa69377d-ba9e-4a2f-921c-be2ab5edcb4e • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •