CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2015-2152

Malware in sbrugna...

6.8CVSS6.4AI score0.00102EPSS

Exploits0References4

CNVD•added 2015/02/28 12:0 a.m.•1 views

Multiple Cross-Site Request Forgery Vulnerabilities in Acobot Live Chat & Contact Form Plugin

Acobot Live Chat & Contact Form plugin is a very friendly and powerful chat management plugin for WordPres. Acobot Live Chat & Contact Form plugin 2.0 for WordPress suffers from multiple cross-site request forgery vulnerabilities, which can be exploited by remote attackers to hijack an...

6.8CVSS7AI score0.00102EPSS

Exploits0References1

WPVulnDB•added 2015/02/22 12:0 a.m.•14 views

Acobot Live Chat & Contact Form <= 2.0 - CSRF/XSS

The acobot WordPress plugin was affected by a CSRF/XSS security vulnerability...

6.8CVSS2.4AI score0.00102EPSS

Exploits0References1Affected Software1

NVD•added 2015/02/20 4:59 p.m.•10 views

CVE-2015-2039

Multiple cross-site request forgery CSRF vulnerabilities in the Acobot Live Chat & Contact Form plugin 2.0 for WordPress allow remote attackers to hijack the authentication of administrators for requests that 1 change plugin settings or 2 conduct cross-site scripting XSS attacks via the acobottok...

6.8CVSS6.6AI score0.00102EPSS

Exploits0References3

Prion•added 2015/02/20 4:59 p.m.•12 views

Cross site request forgery (csrf)

6.8CVSS7AI score0.00102EPSS

Exploits0References3Affected Software1

Cvelist•added 2015/02/20 4:0 p.m.•17 views

CVE-2015-2039

6.6AI score0.00102EPSS

Exploits0References3

CVE•added 2015/02/20 4:0 p.m.•48 views

CVE-2015-2039

The CVE-2015-2039 issue affects the WordPress plugin Acobot Live Chat & Contact Form (version 2.0). The vulnerability is a CSRF vulnerability that can be combined with XSS to hijack an administrator’s authentication for actions such as changing plugin settings (via acobot_token on wp-admin/option...

6.8CVSS6.8AI score0.00102EPSS

Exploits0References3Affected Software1

Patchstack•added 2015/02/20 12:0 a.m.•22 views

WordPress Acobot Live Chat & Contact Form Plugin <= 2.0 - Multiple CSRF

Because of these vulnerabilities, the attackers can hijack the authentication of administrators for requests that change plugin settings or conduct cross-site scripting attacks. Solution Upgrade the plugin...

6.8CVSS3.1AI score0.00102EPSS

Exploits0References1Affected Software1

Packet Storm•added 2015/02/09 12:0 a.m.•24 views

WordPress Acobot Live Chat And Contact Form 2.0 CSRF / XSS

Title: WordPress 'Acobot Live Chat & Contact Form' CSRF/XSS Version: 2.0 Author: Morten Nørtoft, Kenneth Jepsen, Mikkel Vej Date: 2015/01/26 Download: https://wordpress.org/plugins/acobot/ Contacted WordPress: 2015/01/26 ========================================================== Plugin descriptio...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by