CVE-2024-6847 in Chatbot with ChatGPT Pluginالمعلومات

الملخص

بحسب MITRE • 20/08/2024

The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users when submitting messages to the chatbot.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

مسؤول

WPScan

حجز

17/07/2024

إفشاء

20/08/2024

الاعتدال

تمت الموافقة

إدخال

VDB-275196

EPSS

0.00739

KEV

لا

النشاطات

منخفض جدًا

القطاع

Hostingprovider

المصادر

Do you want to use VulDB in your project?

Use the official API to access entries easily!