Filtered by vendor Kognetiks Subscriptions
Filtered by product Chatbot Subscriptions
Total 2 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-2024-10531 1 Kognetiks 2 Chatbot, Kognetiks Chatbot 2024-11-18 5.3 Medium
The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the update_assistant() function in all versions up to, and including, 2.1.7. This makes it possible for authenticated attackers, with subscriber-level access and above, to update GTP assistants.
CVE-2024-10529 1 Kognetiks 2 Chatbot, Kognetiks Chatbot 2024-11-18 5.3 Medium
The Kognetiks Chatbot for WordPress plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the delete_assistant() function in all versions up to, and including, 2.1.7. This makes it possible for authenticated attackers, with subscriber-level access and above, to delete GTP assistants.