4 matches found
CVE-2024-22309
Deserialization of Untrusted Data vulnerability in QuantumCloud ChatBot with AI.This issue affects ChatBot with AI: from n/a through 5.1.0...
CVE-2024-22309
Deserialization of Untrusted Data vulnerability in QuantumCloud ChatBot with AI.This issue affects ChatBot with AI: from n/a through 5.1.0...
CVE-2024-22309
CVE-2024-22309 : WordPress ChatBot with AI plugin vulnerable up to 5.1.0 due to deserialization of untrusted data (PHP Object Injection). Exploitation requires no authentication. Connected sources indicate the issue was fixed with patches in newer releases; ensure upgrade to a non-vulnerable vers...
WordPress ChatBot Plugin <= 5.4.5 is vulnerable to PHP Object Injection
Software ChatBot Type Plugin Vulnerable versions = 5.4.5 Fixed in 5.4.6 OWASP Top 10 A3: Injection Classification PHP Object Injection CVE CVE-2024-22309 Patch priority High CVSS severity High 8.7 Developer Claim ownership PSID f351099f4f1e Credits Le Ngoc Anh Required privilege Unauthenticated...