cleantalk
Vulnerabilities and Security Researches

AI ChatBot, CVE-2025-26932

CVE, Research URL

CVE-2025-26932

Home page URL

Security reports for AI ChatBot

Application

AI ChatBot

Published on
Feb 25, 2025
Research Description
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in QuantumCloud ChatBot allows PHP Local File Inclusion. This issue affects ChatBot: from n/a through 6.3.5.
Affected versions
Min -, max 6.3.6.
Status
vulnerable
Previous vulnerability researches
Chatbot Support AI: Free ChatGPT Chatbot, Woocommerce Chatbot (CVE-2024-6722) , Aug 12, 2024
Chative Live chat and Chatbot (CVE-2024-12541) , Jan 08, 2025
Kognetiks Chatbot for WordPress (CVE-2024-35738) , Jun 10, 2024
Kognetiks Chatbot for WordPress (CVE-2024-4560) , Jun 07, 2024
Kognetiks Chatbot for WordPress (CVE-2024-10530) , Nov 14, 2024
New vulnerability
IS-theme-companion (CVE-2025-53277) , Jul 04, 2025
Lead Form Data Collection to CRM (CVE-2025-5692) , Jul 04, 2025
Drive Folder Embedder (CVE-2025-6546) , Jul 04, 2025
WP Roadmap – Product Feedback Board (CVE-2025-52822) , Jul 04, 2025
WP Wall (CVE-2025-28968) , Jul 04, 2025