Medium 5.3
2025-12-24< 1.6.0
CVE-2025-68596
Chat Widget: Floating Customer Support Button for 30+ Channels, Supporting SMS, Calls, and Chat – Bit Assist
Minimum safe version
1.6.0
Update to 1.6.0 or later to address 9 fixable vulnerabilities
Latest available1.8.0 ✓
High 7.5
2025-04-01< 1.5.5
CVE-2025-30834
Medium 6.5
2025-02-14< 1.5.3
Bit Assist <= 1.5.2 - Authenticated (Subscriber+) SQL Injection via id Parameter
Medium 6.5
2025-02-15< 1.5.3
Bit Assist <= 1.5.2 - Path Traversal to Authenticated (Subscriber+) Arbitrary File Read via fileID Parameter
Medium 4.9
2025-02-14< 1.5.3
CVE-2024-13791
Medium 5.9
2024-12-26< 1.2
WordPress Bit Assist Plugin <= 1.1.9 is vulnerable to Cross Site Scripting (XSS)
N/A
2023-09-19< 1.2
WordPress Bit Assist Plugin < 1.2 is vulnerable to Cross Site Scripting (XSS)
N/A
2023-09-18< 1.2
Bit Assist <= 1.1.9 - Authenticated (Administrator+) Stored Cross-Site Scripting
Medium 4.8
2023-08-21< 1.1.9
CVE-2023-3667