The Autochat Automatic Conversation WordPress plugin through 1.1.7 does not sanitise and escape user input before outputting it back on the page, leading to a cross-site Scripting attack.
Products Affected
| Vendor | Product | Version |
|---|---|---|
| autochat | automatic_conversation | * |