CNNVD-202507-3140 Information

CNNVD ID

CNNVD-202507-3140

Related CVE

CVE-2025-45960

• CNNVD Published: 2025-07-25

Description (Chinese)

tawk.to Live Chat是美国tawk.to公司的一款在线聊天软件。 tawk.to Live Chat 1.6.1版本存在安全漏洞，该漏洞源于输入验证不足，可能导致跨站脚本。

Description (English)

tawk.to Live Chat is an online chat software for tawk.to. There is a security loophole in version 1.6.1 of tawk.to Live Chat, which stems from inadequate input validation and may result in cross-site scripts.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

tawk.to

Published

2025-07-25

Last Modified

2026-02-24

References

http://tawkto.com https://github.com/pracharapol/CVE-2025-45960 https://access.redhat.com/security/cve/cve-2025-45960