CVE-2024-8720 | rumbletalk RumbleTalk Live Group Chat Plugin up to 6.3.0 on WordPress Shortcode rumbletalk-admin-button cross site scripting

A vulnerability was found in rumbletalk RumbleTalk Live Group Chat Plugin up to 6.3.0 on WordPress. It has been classified as problematic. Affected is the function rumbletalk-admin-button of the component Shortcode Handler. The manipulation leads to cross site scripting.

This vulnerability is traded as CVE-2024-8720. It is possible to launch the attack remotely. There is no exploit available.