1134 matches found
bda-chatbot (>=0.0.1 <=1.0.0), cloudbase-init (>=1.1.0 <=1.1.2) +2 more potentially affected by CVE-2022-33977 via untangle (=1.1.1)
untangle PYPI version =1.1.1 is affected by a known vulnerability. The following packages have a transitive dependency on untangle and may be impacted: - bda-chatbot =0.0.1, =1.1.0, =0.1.2, =1.0.0, =1.0.1 Source cves: CVE-2022-33977 Source advisory: OSV:PYSEC-2022-243...
CVE-2022-31587
The yuriyouzhou/KG-fashion-chatbot repository through 2018-05-22 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31587
The yuriyouzhou/KG-fashion-chatbot repository through 2018-05-22 on GitHub allows absolute path traversal because the Flask sendfile function is used unsafely...
CVE-2022-31587
CVE-2022-31587 affects the yuriyouzhou/KG-fashion-chatbot repository (up to 2018-05-22). The issue is an absolute path traversal caused by unsafe use of Flask’s send_file, enabling access to unintended files. CVSS data in the provided sources indicate a high impact on confidentiality and a signif...
KG-fashion-chatbot 路径遍历漏洞
KG-fashion-chatbot is a multi-modal chatbot for online shopping assistant by youzhou individual developer. KG-fashion-chatbot has a security vulnerability in versions 2018-05-22 and earlier, which stems from an unsafe use of Flask's sendfile function that allows absolute path traversal...
Malicious code in wix-chatbot-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4a7f80fb18364a54e5f27f1204e79a97e59940eb4df46398191bd2bc19fff22 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-7163 Malicious code in wix-chatbot-common (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware b4a7f80fb18364a54e5f27f1204e79a97e59940eb4df46398191bd2bc19fff22 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
Malicious code in glip-chatbot-poly (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ab956936c2411a96c286ba8864378373c742a10ce48f62643ee9be7d5a227002 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
MAL-2022-3385 Malicious code in glip-chatbot-poly (npm)
--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware ab956936c2411a96c286ba8864378373c742a10ce48f62643ee9be7d5a227002 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...
ChatBot App with Suggestion SQL注入漏洞
ChatBot App with Suggestion is a ChatBot application with suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to SQL injection, which originates from /simplechatbot/ admin/?page=user/manageuser&id=The page lacks validation for external input SQL...
ChatBot App with Suggestion SQL注入漏洞(CNVD-2022-54683)
ChatBot App with Suggestion is a ChatBot application with Suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to SQL injection, which originates from /simplechatbot/ admin/?page=responses/manageresponse&id=The page lacks validation for external inpu...
ChatBot App with Suggestion SQL注入漏洞(CNVD-2022-54684)
ChatBot App with Suggestion is a ChatBot application with suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to SQL injection, which originates from /simplechatbot/ admin/?page=responses/viewresponse&id=The page lacks validation for external input...
ChatBot App with Suggestion Arbitrary File Deletion Vulnerability
ChatBot App with Suggestion is a ChatBot application with suggestion by Carlo Montero's personal developer. v1.0 of ChatBot App with Suggestion is vulnerable to an arbitrary file deletion vulnerability that originates in /simplechatbot/ classes/Master.php lacks valid validation for filenames, whi...
CVE-2022-31971
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=responses/viewresponse&id=...
CVE-2022-31969
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=user/manageuser&id=...
CVE-2022-31966
ChatBot App with Suggestion v1.0 is vulnerable to Delete any file via /simplechatbot/classes/Master.php?f=deleteimg...
CVE-2022-31970
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=responses/manageresponse&id=...
CVE-2022-31969
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=user/manageuser&id=...
CVE-2022-31971
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=responses/viewresponse&id=...
CVE-2022-31969
ChatBot App with Suggestion v1.0 is vulnerable to SQL Injection via /simplechatbot/admin/?page=user/manageuser&id=...