CVE-2026-40788
- EPSS 0.31%
- Veröffentlicht 15.06.2026 20:18:24
- Zuletzt bearbeitet 15.06.2026 21:24:32
Subscriber Broken Access Control in ChatBot <= 7.9.7 versions.
CVE-2026-32499
- EPSS 0.28%
- Veröffentlicht 25.03.2026 16:15:00
- Zuletzt bearbeitet 24.04.2026 16:35:20
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in QuantumCloud ChatBot chatbot allows Blind SQL Injection.This issue affects ChatBot: from n/a through <= 7.7.9.
CVE-2025-64277
- EPSS 0.23%
- Veröffentlicht 13.11.2025 09:24:32
- Zuletzt bearbeitet 27.04.2026 16:16:39
Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ChatBot: from n/a through <= 7.3.9.
CVE-2025-62952
- EPSS 0.22%
- Veröffentlicht 27.10.2025 01:34:09
- Zuletzt bearbeitet 27.04.2026 17:16:37
Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ChatBot: from n/a through <= 7.7.3.
CVE-2025-53200
- EPSS 0.22%
- Veröffentlicht 27.06.2025 13:20:59
- Zuletzt bearbeitet 23.04.2026 15:32:16
Missing Authorization vulnerability in QuantumCloud ChatBot chatbot allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects ChatBot: from n/a through <= 6.7.3.
CVE-2025-26932
- EPSS 0.7%
- Veröffentlicht 25.02.2025 15:15:27
- Zuletzt bearbeitet 23.04.2026 15:26:05
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in QuantumCloud ChatBot chatbot allows PHP Local File Inclusion.This issue affects ChatBot: from n/a through <= 6.3.5.
CVE-2023-24415
- EPSS 0.26%
- Veröffentlicht 23.02.2023 16:15:11
- Zuletzt bearbeitet 21.11.2024 07:47:49
Cross-Site Request Forgery (CSRF) vulnerability in QuantumCloud AI ChatBot plugin <= 4.2.8 versions.