Lucene search
+L

175 matches found

NVD
NVD
added 2023/03/29 7:15 p.m.62 views

CVE-2022-47613

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in QuantumCloud AI ChatBot plugin = 4.3.0 versions...

5.9CVSS5.4AI score0.00421EPSS
Exploits0References1
Prion
Prion
added 2023/03/29 7:15 p.m.22 views

Cross site scripting

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in QuantumCloud AI ChatBot plugin = 4.3.0 versions...

4.3CVSS4.9AI score0.00421EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/03/29 6:42 p.m.14 views

CVE-2022-47613 WordPress AI ChatBot Plugin <= 4.3.0 is vulnerable to Cross Site Scripting (XSS)

Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in QuantumCloud AI ChatBot plugin = 4.3.0 versions...

5.9CVSS5.6AI score0.00421EPSS
Exploits0References1
CVE
CVE
added 2023/03/29 6:42 p.m.58 views

CVE-2022-47613

CVE-2022-47613 affects the WordPress AI ChatBot/ChatBot plugin up to version 4.3.0. The vulnerability is a stored XSS that requires admin+ privileges to exploit. Multiple connected sources (Patchstack and WP vuln entries) indicate the issue arises from insufficient input sanitization in the chatb...

5.9CVSS4.9AI score0.00421EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/03/29 12:0 a.m.24 views

WordPress Plugin AI ChatBot 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

5.9CVSS5AI score0.00421EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/03/29 12:0 a.m.10 views

PT-2023-15436 · Unknown · Quantumcloud Ai Chatbot Plugin

Name of the Vulnerable Software and Affected Versions: QuantumCloud AI ChatBot plugin versions prior to 4.3.0 Description: The issue is related to a Stored Cross-Site Scripting XSS vulnerability that requires authentication with admin+ privileges. Recommendations: For versions prior to 4.3.0,...

5.9CVSS4.9AI score0.00421EPSS
Exploits0References4
Malwarebytes
Malwarebytes
added 2023/03/27 3:0 a.m.17 views

Bogus Chat GPT extension takes over Facebook accounts

If youre particularly intrigued by the current wave of interest in AI, take care. Theres some bad things lurking in search engine results waiting to compromise your Facebook account. A rogue Chrome extension deployed in a campaign targeting Facebook users is "hitting thousands a day" according to...

6.7AI score
Exploits0
Malwarebytes
Malwarebytes
added 2023/03/14 2:0 a.m.15 views

"Just awful" experiment points suicidal teens at chatbot

After getting in hot water for using an AI chatbot to provide mental health counseling, non-profit startup Koko has now been criticized for experimenting with young adults at risk of harming themselves. Worse, the young adults were unaware they were test subjects. Motherboard reports the experime...

6.4AI score
Exploits0
NVD
NVD
added 2023/02/23 4:15 p.m.26 views

CVE-2023-24415

Cross-Site Request Forgery CSRF vulnerability in QuantumCloud AI ChatBot plugin = 4.2.8 versions...

8.8CVSS6.5AI score0.00264EPSS
Exploits0References1
Prion
Prion
added 2023/02/23 4:15 p.m.18 views

Cross site request forgery (csrf)

Cross-Site Request Forgery CSRF vulnerability in QuantumCloud AI ChatBot plugin = 4.2.8 versions...

6.8CVSS8.7AI score0.00264EPSS
Exploits0References1Affected Software1
Schneier on Security
Schneier on Security
added 2023/01/10 12:18 p.m.27 views

ChatGPT-Written Malware

I dont know how much of a thing this will end up being, but we are seeing ChatGPT-written malware in the wild. …within a few weeks of ChatGPT going live, participants in cybercrime forums--­some with little or no coding experience­--were using it to write software and emails that could be used fo...

0.7AI score
Exploits0
Cvelist
Cvelist
added 2021/12/20 3:10 a.m.24 views

CVE-2021-44164 Chain Sea Information Integration Co., Ltd ai chatbot system - Arbitrary File Upload

Chain Sea ai chatbot system’s file upload function has insufficient filtering for special characters in URLs, which allows a remote attacker to by-pass file type validation, upload malicious script and execute arbitrary code without authentication, in order to take control of the system or...

9.8CVSS9.9AI score0.02055EPSS
Exploits0References1
CVE
CVE
added 2021/12/20 3:10 a.m.49 views

CVE-2021-44164

The CVE-2021-44164 entry concerns Chain Sea AI chatbot system; its file upload function lacks robust filtering for special URL characters, allowing bypass of file type validation and remote code execution without authentication. Impact is system take-over or service termination as described; conn...

9.8CVSS9.8AI score0.02055EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/12/20 3:10 a.m.21 views

CVE-2021-44163 Chain Sea Information Integration Co., Ltd ai chatbot system - Reflected XSS

Chain Sea ai chatbot backend has improper filtering of special characters in URL parameters, which allows a remote attacker to perform JavaScript injection for XSS reflected Cross-site scripting attack without authentication...

6.1CVSS6.4AI score0.0075EPSS
Exploits0References1
The Hacker News
The Hacker News
added 2016/03/25 10:37 p.m.13 views

Microsoft says It's Deeply Sorry for Racist and Offensive Tweets by Tay AI Chatbot

After Microsoft's Twitter-based Artificial Intelligence AI chatbot 'Tay' badly defeated earlier this week, Microsoft has expressed apology and explained what went wrong. For those unaware, Tay is Millennial-inspired artificial intelligence chatbot unveiled by Microsoft on Wednesday that's suppose...

6.5AI score
Exploits0
Rows per page
Query Builder