CVE-2021-46428

CVE-2021-46428 affects Sourcecodester Simple Chatbot Application 1.0 (and earlier versions). The vulnerability is an RCE exposed via the bot_avatar parameter in SystemSettings.php, enabling remote code execution. The available sources indicate a high-severity impact with network access and no aut...

CVE-2021-46427

The CVE refers to CVE-2021-46427 in Sourcecodester Simple Chatbot Application 1.0, with an SQL Injection vulnerability exploitable via the message parameter in Master.php. The vulnerability is documented across multiple sources (NVD and CNVD family) and is described as affecting input handling on...