3 matches found
WordPress ArtiBot Plugin <= 1.1.6 is vulnerable to Broken Access Control
Software ArtiBot Type Plugin Vulnerable versions = 1.1.6 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2024-0447 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID e881969f36c0 Credits Francesco Carlucci Required privilege...
CVE-2024-0447
The ArtiBot Free Chat Bot for WordPress WebSites plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the artibotupdate function in all versions up to, and including, 1.1.6. This makes it possible for authenticated attackers, with...
CVE-2024-0447
CVE-2024-0447 affects the ArtiBot Free Chat Bot for WordPress WebSites plugin for WordPress. The vulnerability is caused by a missing capability check in the artibot_update function, present in all versions up to and including 1.1.6, allowing authenticated attackers with subscriber-level access a...