TechRadar

Critical flaw in WordPress live chat discovered

Security researchers have discovered a critical flaw in WordPress Live Chat Support which can be exploited by an attacker without the need for valid credentials. Over 50,000 websites have installed ...
Threat Post

WP Live Chat WordPress Plugin Re-Patches File Upload Flaw

After researchers were able to bypass a file upload validation flaw patch in WP Live Chat, a new patch has been issued. A WordPress plugin vulnerability found in WP Live Chat could allow an attacker ...
Liliputing

WordPress parent company Automattic buys universal chat app Beeper (which is finally out of beta)

Beeper is a “universal” chat application designed to let you communicate not only with other Beeper users, but with folks who are using other chat platforms including SMS, RCS, WhatsApp, Facebook ...
Bleeping Computer

WordPress Chat Plugin Bug Lets Hackers Inject Text, Steal Logs

Admins of websites with WP Live Chat Support for Wordpress installations should immediately update the plugin to version 8.0.33 or later to patch a critical authentication bypass which can be ...
Threat Post

WordPress WP Live Chat Support Plugin Fixes XSS Flaw

A cross-site scripting flaw in a popular WordPress plugin enables an unauthenticated attacker to insert JavaScript payloads into impacted websites. For the second time this month a patch has been ...
Bleeping Computer

Facebook plugin bug lets hackers hijack WordPress sites’ chat

A high severity bug found in Facebook's official chat plugin for WordPress websites with over 80,000 active installations could allow attackers to intercept messages sent by visitors to the vulnerable ...