CVE-2025-30977

UNKNOWN 0.0

WordPress Chaport <= 1.1.6 - Cross Site Scripting (XSS) Vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Chaport Live Chat Chaport chaport allows Stored XSS.This issue affects Chaport: from n/a through <= 1.1.6.

CWE	CWE-79
Vendor	chaport live chat
Product	chaport
Published	Jun 6, 2025
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for chaport live chat chaport

Be the first to know when new unknown vulnerabilities affecting chaport live chat chaport are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Chaport Live Chat / Chaport

0 ≤ 1.1.6

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/chaport/vulnerability/wordpress-wp-live-chat-chatbots-plugin-for-wordpress-chaport-1-1-5-cross-site-scripting-xss-vulnerability?_s_id=cve

Credits

haudayroi | Patchstack Bug Bounty Program