1134 matches found
WordPress AI Engine plugin <= 2.8.4 - Authenticated (Subscriber+) Stored Cross-Site Scripting via `mwai_chatbot` Shortcode `id` Parameter vulnerability
Authenticated Subscriber+ Stored Cross-Site Scripting via mwaichatbot Shortcode id Parameter vulnerability discovered by mikemyers in WordPress Plugin AI Engine versions = 2.8.4...
CVE-2025-24735
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Chatra Chatra Live Chat + ChatBot + Cart Saver allows Stored XSS. This issue affects Chatra Live Chat + ChatBot + Cart Saver: from n/a through 1.0.11...
CVE-2025-24735
CVE-2025-24735 concerns the WordPress plugin Chatra Live Chat + ChatBot + Cart Saver (<= 1.0.11). The vulnerability is an improper input neutralization that enables Stored Cross-Site Scripting during web page generation. The CVSS v3.1 base score is 7.7 (HIGH) with network attack vector, low at...
WordPress plugin Chatra Live Chat + ChatBot + Cart Saver 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site scripting vulnerability exists...
CVE-2025-53200
Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ChatBot: from n/a through = 6.7.3...
WordPress ChatBot plugin <= 6.7.3 - Broken Access Control Vulnerability
Broken Access Control Vulnerability discovered by zaim in WordPress Plugin ChatBot versions = 6.7.3...
CVE-2025-53200
Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ChatBot: from n/a through = 6.7.3...
CVE-2025-53200 WordPress ChatBot plugin <= 6.7.3 - Broken Access Control Vulnerability
Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ChatBot: from n/a through = 6.7.3...
CVE-2025-53200 WordPress ChatBot plugin <= 6.7.3 - Broken Access Control Vulnerability
Missing Authorization vulnerability in QuantumCloud ChatBot allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects ChatBot: from n/a through 6.7.3...
CVE-2025-53200
CVE-2025-53200 concerns WordPress ChatBot plugin (WPBot)
WordPress plugin ChatBot 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...
WordPress AI Engine 2.8.3 - Authenticated (Subscriber+) Insufficient Authorization to Privilege Escalation via MCP vulnerability
Authenticated Subscriber+ Insufficient Authorization to Privilege Escalation via MCP vulnerability discovered by István Márton - Wordfence in WordPress Plugin AI Engine versions = 2.8.3...
The vulnerability of the Chatbot component of Oracle Financial Services’ Revenue Management and Billing system allows a hacker to gain unauthorized access to read, add, modify, or delete data.
The vulnerability of the Chatbot component of Oracle Financial Services’ Revenue Management and Billing system is related to insufficient validation of input data. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to read, add, modify, or delete...
Limited Canva Creator Data Exposed Via AI Chatbot Database
A Chroma database operated by Russian AI chatbot startup My Jedai was found exposed online, leaking survey responses…...
Intercom Chatbot Detected
This is an informational plugin to inform the user that the scanner has detected a publicly accessible Intercom chatbot on the target application. Intercom is a solution to build & deploy AI customer experiences. This detection is included in the AI and LLM category. No source data...
Drift Chatbot Detected
This is an informational plugin to inform the user that the scanner has detected a publicly accessible Drift chatbot on the target application. Drift is a solution to build & deploy AI customer experiences. This detection is included in the AI and LLM category. No source data...
Dialogflow Chatbot Detected
This is an informational plugin to inform the user that the scanner has detected a publicly accessible Dialogflow chatbot on the target application. Google Dialogflow is a natural language understanding platform to help developers building conversational user interfaces. This detection is include...
Typebot Chatbot Detected
This is an informational plugin to inform the user that the scanner has detected a publicly accessible Typebot chatbot on the target application. Typebot is an open-source chatbot builder. This detection is included in the AI and LLM category. No source data...
Botpress Chatbot Detected
This is an informational plugin to inform the user that the scanner has detected a publicly accessible Botpress chatbot on the target application. Botpress is an open-source visual framework to build & deploy GPT/LLM Agents. This detection is included in the AI and LLM category. No source data...
Azure Bot Framework Chatbot Detected
This is an informational plugin to inform the user that the scanner has detected a publicly accessible Azure Bot Framework chatbot on the target application. Azure Bot Framework is a solution to build & deploy AI customer experiences. This detection is included in the AI and LLM category. No sour...