Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

ChatBot — Vulnerabilities & Security Advisories 15

All 15 CVE vulnerabilities found in ChatBot, with AI-generated Chinese analysis, references, and POCs.

This page documents vulnerability aggregations for the Chatbot product category, focusing on common weakness classifications and associated security tags. It collects reports covering software flaws, configuration errors, and integration risks that have been disclosed between January 2020 and the present date. The collected data encompasses issues related to natural language processing models, data leakage through conversational interfaces, and authentication bypasses affecting bot deployments. Visitors can use this resource to track vendor advisories as they are issued, allowing for timely updates to security protocols. By reviewing the aggregated entries, users can understand the prevalence and severity of specific weakness classes within conversational AI systems. The page also enables users to look up a specific product’s vulnerability history to assess long-term security posture and maintenance responsiveness. This structured approach helps developers and security analysts identify patterns in reported defects, facilitating better risk assessment during development and deployment phases. The information is compiled from publicly available sources, ensuring transparency regarding known security issues. Readers are encouraged to cross-reference these findings with official vendor documentation for the most current patch information. Understanding these vulnerabilities is essential for securing chatbot applications against emerging threats and maintaining user trust. The page serves as a neutral reference point for security auditing and compliance verification purposes.

Vendor: CBOT

CVE IDTitleCVSSSeverityPublished
CVE-2026-57362 WordPress ChatBot plugin <= 8.3.2 - Reflected Cross Site Scripting (XSS) vulnerability CWE-79 7.1 High2026-07-02
CVE-2026-40788 WordPress ChatBot plugin <= 7.9.7 - Broken Access Control vulnerability CWE-862 7.1 High2026-06-15
CVE-2026-32499 WordPress ChatBot plugin <= 7.7.9 - SQL Injection vulnerability CWE-89 9.3 Critical2026-03-25
CVE-2025-64277 WordPress ChatBot plugin <= 7.3.9 - Broken Access Control vulnerability CWE-862 5.3 Medium2025-11-13
CVE-2025-62952 WordPress ChatBot plugin <= 7.7.3 - Broken Access Control vulnerability CWE-862 4.3 Medium2025-10-27
CVE-2025-11952 Stored Cross-Site Scripting (XSS) in Oct8ne Chatbot CWE-79 5.4AIMediumAI2025-10-22
CVE-2025-10869 Stored Cross-Site Scripting (XSS) in Oct8ne Chatbot CWE-79 5.4AIMediumAI2025-10-15
CVE-2025-53200 WordPress ChatBot plugin <= 6.7.3 - Broken Access Control Vulnerability CWE-862 4.3 Medium2025-06-27
CVE-2025-26932 WordPress WPBot plugin <= 6.3.5 - Local File Inclusion vulnerability CWE-98 7.5 High2025-02-25
CVE-2023-2887 User Authentication Bypass in CBOT's Chatbot CWE-290 9.8 Critical2023-05-25
CVE-2023-2886 Cross-Site WebSocket Hijacking in CBOT's Chatbot CWE-1385 4.3 Medium2023-05-25
CVE-2023-2885 Channel Accessible by Non-Endpoint in CBOT's Chatbot CWE-924 8.1 High2023-05-25
CVE-2023-2884 Insecure Randomness in CBOT's Chatbot CWE-338 9.8 Critical2023-05-25
CVE-2023-2883 IDOR in CBOT's Chatbot CWE-639 8.8 High2023-05-25
CVE-2023-2882 Privilege Escalation in CBOT's Chatbot CWE-1270 9.8 Critical2023-05-25

All 15 known CVE vulnerabilities affecting ChatBot with full Chinese analysis, references, and POCs where available.