EPSS
Percentile
19.4%
Authenticated Stored Cross-Site Scripting (XSS) vulnerability discovered by Asif Nawaz Minhas (Patchstack Alliance) in WordPress Chaty plugin (versions <= 2.8.3).
No patched version is available.
cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-36846
wordpress.org/plugins/chaty/