All 2 CVE vulnerabilities found in GeekyBot — AI Copilot, Chatbot, WooCommerce Lead Gen & Zero-Prompt Content, with AI-generated Chinese analysis, references, and POCs.
Vendor: ahmadgb
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-3456 | GeekyBot — Generate AI Content Without Prompt, Chatbot and Lead Generation <= 1.2.0 - Unauthenticated SQL Injection via 'attributekey' CWE-89 | 7.5 | High | 2026-05-05 |
| CVE-2026-5294 | GeekyBot <= 1.2.2 - Missing Authorization to Unauthenticated Arbitrary Plugin Installation via 'geekybot_frontendajax' AJAX Action CWE-862 | 9.8 | Critical | 2026-05-05 |
All 2 known CVE vulnerabilities affecting GeekyBot — AI Copilot, Chatbot, WooCommerce Lead Gen & Zero-Prompt Content with full Chinese analysis, references, and POCs where available.