| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2023-5533 | AI ChatBot <= 4.8.9 and 4.9.2 - Missing Authorization on AJAX actions | quantumcloud | WPBot – AI ChatBot for Live Support, Lead Generation, AI Services | Medium | 5.3 | 2023-10-20 07:29:26 | Deep Dive |
| CVE-2023-5534 | AI ChatBot <= 4.8.9 and 4.9.2 - Cross-Site Request Forgery on AJAX actions | quantumcloud | WPBot – AI ChatBot for Live Support, Lead Generation, AI Services | Medium | 4.3 | 2023-10-20 07:29:23 | Deep Dive |
| CVE-2023-5254 | AI ChatBot <= 4.8.9 - Unauthenticated Sensitive Information Exposure via qcld_wb_chatbot_check_user | quantumcloud | WPBot – AI ChatBot for Live Support, Lead Generation, AI Services | Medium | 5.3 | 2023-10-19 05:34:12 | Deep Dive |
| CVE-2023-5212 | AI ChatBot <= 4.8.9 and 4.9.2- Authenticated (Subscriber+) Arbitrary File Deletion via qcld_openai_delete_training_file | quantumcloud | WPBot – AI ChatBot for Live Support, Lead Generation, AI Services | Critical | 9.6 | 2023-10-19 05:34:12 | Deep Dive |
| CVE-2023-5241 | AI ChatBot <= 4.8.9 and 4.9.2 - Authenticated (Subscriber+) Directory Traversal to Arbitrary File Write via qcld_openai_upload_pagetraining_file | quantumcloud | WPBot – AI ChatBot for Live Support, Lead Generation, AI Services | Critical | 9.6 | 2023-10-19 05:34:11 | Deep Dive |
| CVE-2023-5204 | AI ChatBot <= 4.8.9 - Unauthenticated SQL Injection via qc_wpbo_search_response | quantumcloud | WPBot – AI ChatBot for Live Support, Lead Generation, AI Services | Critical | 9.8 | 2023-10-19 05:34:11 | Deep Dive |
| CVE-2023-44993 | WordPress ChatBot Plugin <= 4.7.8 is vulnerable to Cross Site Request Forgery (CSRF) | QuantumCloud | AI ChatBot | Medium | 4.3 | 2023-10-09 10:11:27 | Deep Dive |
| CVE-2021-4424 | Slider Hero <= 8.2.0 - Cross-Site Request Forgery Bypass | quantumcloud | Slider Hero with Video Background, Animation | Medium | 4.3 | 2023-07-12 06:52:36 | Deep Dive |
| CVE-2023-23981 | WordPress Conversational Forms for ChatBot Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS) | QuantumCloud | Conversational Forms for ChatBot | Medium | 5.9 | 2023-04-06 04:43:22 | Deep Dive |
| CVE-2022-47613 | WordPress AI ChatBot Plugin <= 4.3.0 is vulnerable to Cross Site Scripting (XSS) | QuantumCloud | AI ChatBot | Medium | 5.9 | 2023-03-29 18:42:17 | Deep Dive |
| CVE-2023-24415 | WordPress AI ChatBot plugin <= 4.2.8 is vulnerable to Cross Site Request Forgery (CSRF) | QuantumCloud | AI ChatBot | Medium | 5.4 | 2023-02-23 15:03:25 | Deep Dive |