Webdigit Chatbot With Chatgpt — known CVE vulnerabilities
Every CVE whose affected-product data names Webdigit Chatbot With Chatgpt, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (4)
CVE-2024-6847 — CVSS 9.8 (critical): The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not properly sanitise and escape a parameter before using it in a SQL…
CVE-2024-6843 — CVSS 6.1 (medium): The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not sanitise and escape user inputs, which could allow unauthenticated users to…
CVE-2024-6845 — CVSS 5.3 (medium): The Chatbot with ChatGPT WordPress plugin before 2.4.6 does not have proper authorization in one of its REST endpoint, allowing…
CVE-2024-6846 — CVSS 5.3 (medium): The Chatbot with ChatGPT WordPress plugin before 2.4.5 does not validate access on some REST routes, allowing for an unauthenticated user…