5 matches found
WordPress ArtiBot Free Chat Bot for WebSites plugin cross-site scripting vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress plugin is an application plugin. The WordPress ArtiBot Free Chat Bot for WebSites plugin suffers from a cross-site scripting vulnerability that stems from the application's lack of effective filtering and...
CVE-2024-0447
CVE-2024-0447 affects the ArtiBot Free Chat Bot for WordPress WebSites plugin for WordPress. The vulnerability is caused by a missing capability check in the artibot_update function, present in all versions up to and including 1.1.6, allowing authenticated attackers with subscriber-level access a...
CVE-2024-0449
CVE-2024-0449 affects the ArtiBot Free Chat Bot for WordPress WebSites plugin for WordPress (versions up to and including 1.1.6). The vulnerability is a stored cross-site scripting flaw in admin settings caused by insufficient input sanitization and output escaping. It requires authenticated acce...
PT-2024-15569 · WordPress · Artibot Free Chat Bot For Wordpress Websites
Name of the Vulnerable Software and Affected Versions: ArtiBot Free Chat Bot for WordPress WebSites plugin for WordPress versions up to, and including, 1.1.6 Description: The issue allows authenticated attackers with administrator-level permissions and above to inject arbitrary web scripts in pag...
ArtiBot Free Chat Bot for WordPress WebSites <= 1.1.6 - Authenticated (Admin+) Cross-Site Scripting
Description The ArtiBot Free Chat Bot for WordPress WebSites plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to, and including, 1.1.6 due to insufficient input sanitization and output escaping. This makes it possible for authenticated...