CVE-2023-2887
Authentication Bypass by Spoofing vulnerability in CBOT Chatbot allows Authentication Bypass.This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.
Source: CVE-2023-2887
CVE-2023-2887
Authentication Bypass by Spoofing vulnerability in CBOT Chatbot allows Authentication Bypass.This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.
Source: CVE-2023-2887
CVE-2023-2882
Generation of Incorrect Security Tokens vulnerability in CBOT Chatbot allows Token Impersonation, Privilege Abuse.This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.
Source: CVE-2023-2882
CVE-2023-2883
Authorization Bypass Through User-Controlled Key vulnerability in CBOT Chatbot allows Authentication Abuse, Authentication Bypass.This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.
Source: CVE-2023-2883
CVE-2023-2884
Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG), Use of Insufficiently Random Values vulnerability in CBOT Chatbot allows Signature Spoofing by Key Recreation.This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.
Source: CVE-2023-2884
CVE-2023-2885
Channel Accessible by Non-Endpoint vulnerability in CBOT Chatbot allows Adversary in the Middle (AiTM).This issue affects Chatbot: before Core: v4.0.3.4 Panel: v4.0.3.7.
Source: CVE-2023-2885
CVE-2023-2881
Storing Passwords in a Recoverable Format in GitHub repository pimcore/customer-data-framework prior to 3.3.10.
Source: CVE-2023-2881
CVE-2022-47164
Cross-Site Request Forgery (CSRF) vulnerability in MagePeople Team Event Manager and Tickets Selling Plugin for WooCommerce plugin <=Â 3.7.7 versions.
Source: CVE-2022-47164
CVE-2022-47159
Cross-Site Request Forgery (CSRF) vulnerability in Logaster Logaster Logo Generator plugin <=Â 1.3 versions.
Source: CVE-2022-47159
CVE-2022-46865
Cross-Site Request Forgery (CSRF) vulnerability in Marty Thornley Bulk Resize Media plugin <=Â 1.1 versions.
Source: CVE-2022-46865
CVE-2022-46866
Cross-Site Request Forgery (CSRF) vulnerability in Marty Thornley Import External Images plugin <=Â 1.4 versions.
Source: CVE-2022-46866