CVE-2023-48741

CWE-89SQL Injection3 documents3 sources
Severity
7.2HIGH
EPSS
0.1%
top 65.01%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Quantumcloud AI ChatbotQuantumcloud Wpbot
Timeline
PublishedDec 19

Description

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in QuantumCloud AI ChatBot.This issue affects AI ChatBot: from n/a through 4.7.8.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:LExploitability: 2.3 | Impact: 4.7

Affected Packages2 packages

CVEListV5quantumcloud/ai_chatbotn/a4.7.8

🔴Vulnerability Details

2
GHSA
GHSA-rwjv-2j4j-ch2j: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in QuantumCloud AI ChatBot2023-12-19
CVEList
WordPress ChatBot Plugin <= 4.7.8 is vulnerable to SQL Injection2023-12-19
CVE-2023-48741 (HIGH CVSS 7.2) | Improper Neutralization of Special | cvebase.io