GCVE - cpe:2.3:a:jeff_starr:simple_ajax_chat_(wordpress

Approved changes feed: RSS · Atom

cpe:2.3:a:jeff_starr:simple_ajax_chat_(wordpress_plugin):*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Jeff Starr (`4a6cb7e4-15c4-55d4-b2a8-0a67e6a14f7d`)
Product	Simple Ajax Chat (Wordpress Plugin) (`e5ee48ba-4a74-5983-8446-88ee4c75fad4`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2022-27850`	vulnerable	2026-06-08 05:42:43.418255	WordPress Simple Ajax Chat plugin <= 20220115 - Multiple Cross-Site Request Forgery (CSRF) vulnerability MEDIUM (5.4) Cross-Site Request Forgery (CSRF) in Simple Ajax Chat (WordPress plugin) <= 20220115 allows an attacker to clear the chat log or delete a chat message. Published: 2022-04-15T16:24:45.573Z Updated: 2026-04-28T16:07:39.690Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/simple-ajax-chat/#developers https://patchstack.com/database/vulnerability/simple-ajax-chat/wordpress-simple-ajax-chat-plugin-20220115-multiple-cross-site-request-forgery-csrf-vulnerability	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-27849`	vulnerable	2026-06-08 05:42:43.417054	WordPress Simple Ajax Chat plugin <= 20220115 - Sensitive Information Disclosure vulnerability MEDIUM (5.3) Sensitive Information Disclosure (sac-export.csv) in Simple Ajax Chat (WordPress plugin) <= 20220115 Published: 2022-04-15T16:24:44.617Z Updated: 2026-04-28T16:07:39.811Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/simple-ajax-chat/#developers https://patchstack.com/database/vulnerability/simple-ajax-chat/wordpress-simple-ajax-chat-plugin-20220115-sensitive-information-disclosure-vulnerability	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-25610`	vulnerable	2026-06-08 05:41:46.046902	WordPress Simple Ajax Chat plugin <= 20220115 - Unauthenticated Stored Cross-Site Scripting (XSS) vulnerability LOW (3.4) Unauthenticated Stored Cross-Site Scripting (XSS) in Simple Ajax Chat <= 20220115 allows an attacker to store the malicious code. However, the attack requires specific conditions, making it hard to exploit. Published: 2022-03-25T18:02:34.115Z Updated: 2026-04-28T16:07:39.066Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/simple-ajax-chat/#developers https://patchstack.com/database/vulnerability/simple-ajax-chat/wordpress-simple-ajax-chat-plugin-20220115-unauthenticated-stored-cross-site-scripting-xss-vulnerability	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Simple Ajax Chat (Wordpress Plugin)

PURL mappings

Vulnerability references

Contribute