bookmark_borderWP-Live Chat by 3CX < 8.2.0 - Authenticated Stored Cross-Site Scripting

https://chevonphillip.com/wp-content/uploads/2020/07/3CX-WP-Live-Chat-XSS-1.mp4

There is a Stored Cross-Site Scripting (XSS) in WP-Live Chat by 3CX v. 8.1.9 By 3CX within the Quick Response function. Due to the nature of this vulnerability, a malicious attack with access to a WordPress multisite and permissions to this plugin can craft a malformed JavaScript payload.

https://wpvulndb.com/vulnerabilities/10303