HIGH
collectchat
CVE published 2026-06-17
CVE-2026-40765
CVE-2026-40765 is a high-severity Unauthenticated Cross Site Scripting (XSS) vulnerability in the collectchat plugin versions up to 2.4.9. The vulnerability has a CVSS score of 7.1 and is considered HIGH. It was published on June 17, 2026, and last modified on the same day. The vulnerability allows attackers to inject malicious scripts into the application. Users of the collectchat plugin should take imme [truncated]