cleantalk
Vulnerabilities and Security Researches

Chatbot Support AI: Free ChatGPT Chatbot, Woocommerce Chatbot, CVE-2024-6722

CVE, Research URL

CVE-2024-6722

Home page URL

Security reports for Chatbot Support AI: Free ChatGPT Chatbot, Woocommerce Chatbot

Application

Chatbot Support AI: Free ChatGPT Chatbot, Woocommerce Chatbot

Published on
Sep 04, 2024
Research Description
The Chatbot Support AI: Free ChatGPT Chatbot, Woocommerce Chatbot WordPress plugin through 1.0.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
Affected versions
Min -, max 1.0.2.
Status
vulnerable
Previous vulnerability researches
Chatbot Support AI: Free ChatGPT Chatbot, Woocommerce Chatbot (CVE-2024-6722) , Aug 12, 2024
New vulnerability
LessButtons Social Sharing and Statistics (CVE-2025-47614) , May 08, 2025
Nested Pages (CVE-2025-0718) , May 08, 2025
PW WooCommerce Bulk Edit (CVE-2025-47473) , May 08, 2025
Xavin's List Subpages (CVE-2025-4220) , May 08, 2025
CarDealerPress (CVE-2025-3860) , May 08, 2025