CVE-2025-45960 Information
Jul 26, 2025
cve
Description
Cross Site Scripting vulnerability in tawk.to Live Chat v.1.6.1 allows a remote attacker to execute arbitrary code via the web application stores and displays user-supplied input without proper input validation or encoding
Reference
http://tawkto.com https://github.com/pracharapol/CVE-2025-45960
Related CNNVD
CNNVD-202507-3140 (Published: 2025-07-25)
Share on: