Lucene search
K

25 matches found

RedhatCVE
RedhatCVE
added 2026/02/21 7:31 p.m.7 views

CVE-2025-69388

Missing Authorization vulnerability in cliengo Cliengo – Chatbot cliengo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cliengo – Chatbot: from n/a through = 3.0.4...

6.5CVSS5.5AI score0.00248EPSS
Exploits0References1
NVD
NVD
added 2026/02/20 4:22 p.m.6 views

CVE-2025-69388

Missing Authorization vulnerability in cliengo Cliengo – Chatbot cliengo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cliengo – Chatbot: from n/a through = 3.0.4...

6.5CVSS0.00248EPSS
Exploits0References1
CVE
CVE
added 2026/02/20 3:46 p.m.8 views

CVE-2025-69388

CVE-2025-69388 affects WordPress Cliengo – Chatbot plugin

6.5CVSS5.5AI score0.00248EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/20 3:46 p.m.23 views

CVE-2025-69388 WordPress Cliengo – Chatbot plugin <= 3.0.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in cliengo Cliengo – Chatbot cliengo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cliengo – Chatbot: from n/a through = 3.0.4...

6.5CVSS0.00248EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/20 3:46 p.m.3 views

CVE-2025-69388 WordPress Cliengo – Chatbot plugin <= 3.0.4 - Broken Access Control vulnerability

Missing Authorization vulnerability in cliengo Cliengo – Chatbot cliengo allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Cliengo – Chatbot: from n/a through = 3.0.4...

6.5CVSS5.3AI score0.00248EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/02/20 12:0 a.m.8 views

PT-2026-21169

Name of the Vulnerable Software and Affected Versions Cliengo – Chatbot versions through 3.0.4 Description An authorization issue exists in Cliengo – Chatbot, allowing exploitation due to incorrectly configured access control security levels. Recommendations Update Cliengo – Chatbot to a version...

5.3AI score0.00248EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-36883

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00183EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-47109

Malicious code in bioql PyPI...

5.4CVSS6.5AI score0.00465EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:51 a.m.5 views

CVE-2024-37923

Cross-Site Request Forgery CSRF vulnerability in cliengo Cliengo – Chatbot cliengo allows Cross Site Request Forgery.This issue affects Cliengo – Chatbot: from n/a through = 3.0.4...

5.4CVSS5.9AI score0.00183EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:27 a.m.3 views

CVE-2024-5993

The Cliengo – Chatbot plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'updatesession' function in all versions up to, and including, 3.0.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, ...

5.4CVSS5.9AI score0.00465EPSS
Exploits0References1
NVD
NVD
added 2024/07/09 9:15 a.m.27 views

CVE-2024-5993

The Cliengo – Chatbot plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'updatesession' function in all versions up to, and including, 3.0.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, ...

5.4CVSS0.00465EPSS
Exploits0References3
Cvelist
Cvelist
added 2024/07/09 8:33 a.m.21 views

CVE-2024-5993 Cliengo - Chatbot <= 3.0.2 - Missing Authorization to Authorized (Subscriber+) Chatbot Settings Update

The Cliengo – Chatbot plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'updatesession' function in all versions up to, and including, 3.0.2. This makes it possible for authenticated attackers, with Subscriber-level access and above, ...

5.4CVSS0.00465EPSS
Exploits0References2
NVD
NVD
added 2024/07/09 8:15 a.m.14 views

CVE-2024-37923

Cross-Site Request Forgery CSRF vulnerability in cliengo Cliengo – Chatbot cliengo allows Cross Site Request Forgery.This issue affects Cliengo – Chatbot: from n/a through = 3.0.4...

5.4CVSS0.00183EPSS
Exploits0References2
CVE
CVE
added 2024/07/09 7:38 a.m.48 views

CVE-2024-37923

Technical details about CVE-2024-37923 (Cliengo – Chatbot CSRF) are not present in the connected documents; no affected versions, root cause, exploit information, or remediation are provided here. Monitor for updates.

5.4CVSS5.9AI score0.00183EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/07/09 7:38 a.m.17 views

CVE-2024-37923 WordPress Cliengo - Chatbot plugin <= 3.0.1 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Cliengo – Chatbot.This issue affects Cliengo – Chatbot: from n/a through 3.0.1...

5.4CVSS7.2AI score0.00183EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/07/09 7:34 a.m.4 views

WordPress Cliengo – Chatbot plugin <= 3.0.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin Cliengo – Chatbot versions = 3.0.4...

5.4CVSS7AI score0.00183EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/07/09 7:24 a.m.4 views

WordPress Cliengo - Chatbot plugin <= 3.0.2 - Missing Authorization to Unauthenticated Chatbot Settings Update vulnerability

WordPress Cliengo - Chatbot plugin = 3.0.2 - Missing Authorization to Unauthenticated Chatbot Settings Update vulnerability discovered by Lucio Sá in WordPress Plugin Cliengo – Chatbot versions = 3.0.2...

6.5CVSS7AI score0.00536EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/07/09 12:0 a.m.9 views

WordPress Cliengo – Chatbot Plugin <= 3.0.1 is vulnerable to Broken Access Control

Software Cliengo – Chatbot Type Plugin Vulnerable versions = 3.0.1 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-5992 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 5df51a028217 Credits Lucio Sá Required privilege...

6.5CVSS6.6AI score0.00536EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/07/09 12:0 a.m.6 views

PT-2024-37297 · WordPress · Cliengo – Chatbot

Name of the Vulnerable Software and Affected Versions: The Cliengo – Chatbot plugin for WordPress versions up to, and including, 3.0.1 Description: The issue arises from a missing capability check on the update chatbot token and update chatbot position functions, allowing unauthorized modificatio...

6.5CVSS6.8AI score0.00536EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/07/09 12:0 a.m.5 views

WordPress plugin Cliengo - Chatbot Cross-Site Request Forgery Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. WordPress plugin Cliengo -...

5.4CVSS6.8AI score0.00183EPSS
Exploits0References2
Rows per page
Query Builder