1134 matches found
CVE-2022-31971
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=responses/viewresponse&id=...
CVE-2022-31970
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=responses/manageresponse&id=...
CVE-2022-31966
ChatBot App with Suggestion v1.0 is vulnerable to Delete any file via /simplechatbot/classes/Master.php?f=deleteimg...
CVE-2022-31966
ChatBot App with Suggestion v1.0 is vulnerable to Delete any file via /simplechatbot/classes/Master.php?f=deleteimg...
CVE-2022-31970
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=responses/manageresponse&id=...
Sql injection
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=responses/manageresponse&id=...
Design/Logic Flaw
ChatBot App with Suggestion v1.0 is vulnerable to Delete any file via /simplechatbot/classes/Master.php?f=deleteimg...
Sql injection
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=responses/viewresponse&id=...
Sql injection
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=user/manageuser&id=...
ChatBot App with Suggestion SQL注入漏洞
ChatBot App with Suggestion is a ChatBot application with suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to SQL injection, which originates from /simplechatbot/ admin/?page=user/manageuser&id=The page lacks validation for external input SQL...
ChatBot App with Suggestion 安全漏洞
ChatBot App with Suggestion is a ChatBot application with suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to an arbitrary file deletion vulnerability that originates in /simplechatbot/ classes/Master.php lacks valid validation for filenames, whi...
CVE-2022-31966
ChatBot App with Suggestion v1.0 is affected by CVE-2022-31966. Affected component: /simple_chat_bot/classes/Master.php. Root cause: lack of filename validation in the delete_img function, enabling arbitrary file deletion through the parameter f=delete_img. Impact: arbitrary deletion of files as ...
CVE-2022-31966
ChatBot App with Suggestion v1.0 is vulnerable to Delete any file via /simplechatbot/classes/Master.php?f=deleteimg...
CVE-2022-31969
CVE-2022-31969 affects the ChatBot App with Suggestion v1.0, where the vulnerability is a SQL Injection in the admin page parameter: /simple_chat_bot/admin/?page=user/manage_user&id=. The root cause is lack of input validation/parameterization on the id parameter, enabling arbitrary SQL execution...
CVE-2022-31969
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=user/manageuser&id=...
CVE-2022-31970
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=responses/manageresponse&id=...
CVE-2022-31970
CVE-2022-31970 describes a SQL injection vulnerability in ChatBot App with Suggestion v1.0. The issue affects the admin interface at /simple_chat_bot/admin/?page=responses/manage_response&id= where external input is not validated, allowing an attacker to inject SQL statements. Public sources (NVD...
CVE-2022-31971
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=responses/viewresponse&id=...
CVE-2022-31971
CVE-2022-31971 affects ChatBot App with Suggestion v1.0. The vulnerability is a SQL Injection in the admin view, exposed via the URL parameter /simple_chat_bot/admin/?page=responses/view_response&id=, where user-controlled input can influence SQL queries. Root cause described across connected sou...
ChatBot Application with a Suggestion Feature SQL Injection Vulnerability
ChatBot Application with a Suggestion FeatureA ChatBot application with a suggestion feature. chatBot Application with a Suggestion Feature v1.0 is vulnerable to a SQL injection vulnerability in /simple chatbot/classes/Master.php?f=deleteresponse, id is missing validation for external input SQL...