CNNVD-202509-4381 Information

CNNVD ID

CNNVD-202509-4381

Related CVE

CVE-2025-57483

• CNNVD Published: 2025-09-29

Description (Chinese)

TawkTo Widget是TawkTo公司的一个小部件设计程序。 TawkTo Widget v4版本存在安全漏洞，该漏洞源于未验证输入，可能导致反射型跨站脚本攻击。

Description (English)

TawkTo Widget is a small component design program for TawkTo. There is a security loophole in TawkTo Widget v4, which originates from unverified input and may result in a reflector-type cross-site script attack.

Hazard Level

High

Vulnerability Type

其他

Affected Vendor

TawkTo

Published

2025-09-29

Last Modified

2026-02-24

References

https://github.com/Jainil-89/CVE/blob/main/cve.md https://ticketsmonk.com/events/details/412291