CVE-2024-29100
- EPSS 0.64%
- Veröffentlicht 28.03.2024 06:15:13
- Zuletzt bearbeitet 28.04.2026 19:23:40
Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This issue affects AI Engine: ChatGPT Chatbot: from n/a through 2.1.4.
CVE-2024-29090
- EPSS 0.89%
- Veröffentlicht 28.03.2024 06:15:12
- Zuletzt bearbeitet 08.04.2025 16:38:50
Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This issue affects AI Engine: ChatGPT Chatbot: from n/a through 2.1.4.
CVE-2024-0699
- EPSS 1.21%
- Veröffentlicht 05.02.2024 22:16:04
- Zuletzt bearbeitet 08.04.2026 17:17:24
The AI Engine: Chatbots, Generators, Assistants, GPT 4 and more! plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'add_image_from_url' function in all versions up to, and including, 2.1.4. This m...
CVE-2023-2580
- EPSS 0.47%
- Veröffentlicht 27.06.2023 14:15:10
- Zuletzt bearbeitet 21.11.2024 07:58:52
The AI Engine WordPress plugin before 1.6.83 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed...