2 matches found
CVE-2023-5254
CVE-2023-5254 affects the AI ChatBot WordPress plugin. The vulnerability is an unauthenticated Sensitive Information Exposure via the qcld_wb_chatbot_check_user function, impacting versions up to and including 4.8.9. An attacker can confirm whether a username exists and view order information for...
WordPress ChatBot Plugin <= 4.8.9 is vulnerable to Sensitive Data Exposure
Software ChatBot Type Plugin Vulnerable versions = 4.8.9 Fixed in 4.9.1 OWASP Top 10 A3: Sensitive Data Exposure Classification Sensitive Data Exposure CVE CVE-2023-5254 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID a08bb4253476 Credits Marco Wotschka Required privilege...