cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-12541,https://securityvulnerability.io/vulnerability/CVE-2024-12541,Cross-Site Request Forgery Vulnerability in Chative Live Chat and Chatbot Plugin for WordPress,"The Chative Live Chat and Chatbot plugin for WordPress has a vulnerability that allows unauthenticated attackers to exploit Cross-Site Request Forgery due to insufficient nonce validation in the add_chative_widget_action() function. By tricking site administrators into performing actions, such as clicking on a malicious link, attackers can alter the channel ID or organization ID of the live chat widget. This could redirect users to an attacker-controlled channel, compromising the integrity and security of the communication.",Wordpress,Chative Live Chat And Chatbot,5.4,MEDIUM,0.0005200000014156103,false,,false,false,false,false,false,false,2025-01-07T03:21:56.199Z,0