Vulnerabilities > Meowapps > AI Engine > 2.1.8

DATE CVE VULNERABILITY TITLE RISK
2024-09-13 CVE-2024-6723 SQL Injection vulnerability in Meowapps AI Engine
The AI Engine WordPress plugin before 2.4.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by admin users when viewing chatbot discussions.
network
low complexity
meowapps CWE-89
4.7
4.7
2024-08-01 CVE-2024-38791 Server-Side Request Forgery (SSRF) vulnerability in Meowapps AI Engine
Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot allows Server Side Request Forgery.This issue affects AI Engine: ChatGPT Chatbot: from n/a through 2.4.7.
network
low complexity
meowapps CWE-918
7.1
7.1
2024-05-14 CVE-2024-34440 Unspecified vulnerability in Meowapps AI Engine
Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This issue affects AI Engine: ChatGPT Chatbot: from n/a through 2.2.63.
network
low complexity
meowapps
7.2
7.2