Karolis Narvilas

**Name of the Vulnerable Software and Affected Versions** The AI Engine WordPress plugin versions prior to 2.4.8 **Description** The issue is related to a SQL injection that occurs due to improper sanitization and escaping of a parameter in a SQL statement. This can be exploited by admin users when viewing chatbot discussions. **Recommendations** For versions prior to 2.4.8, update to version 2.4.8 or later to resolve the issue. As a temporary workaround, consider restricting access to chatbot discussions for admin users until the update is applied.

**Name of the Vulnerable Software and Affected Versions** The Chatbot with ChatGPT WordPress plugin versions prior to 2.4.5 **Description** The issue is related to a SQL injection vulnerability. It occurs because the plugin does not properly sanitise and escape a parameter before using it in a SQL statement. This vulnerability is exploitable by unauthenticated users when submitting messages to the chatbot. **Recommendations** For versions prior to 2.4.5, update to version 2.4.5 or later to prevent exploitation by unauthenticated users when submitting messages to the chatbot. As a temporary workaround, consider restricting access to the chatbot functionality until the update is applied.

**Name of the Vulnerable Software and Affected Versions** AI Engine versions < 2.4.3 AI Engine WordPress plugin versions prior to 2.5.1 **Description** The issue is related to remote-code-execution (RCE) via Log Poisoning. The AI Engine WordPress plugin fails to validate the file extension of `logs path`, allowing Administrators to change log filetypes from .log to .php. This can lead to potential security risks. **Recommendations** For AI Engine versions < 2.4.3, update to version 2.4.3 or later to resolve the issue. For AI Engine WordPress plugin versions prior to 2.5.1, update to version 2.5.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the `logs path` variable to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** The Chatbot with ChatGPT WordPress plugin versions prior to 2.4.5 **Description** The issue concerns the lack of sanitization and escaping of user inputs, which could allow unauthenticated users to perform Stored Cross-Site Scripting attacks against admins. This could potentially impact a significant number of devices worldwide, although the exact number is not specified. The attacks could be performed by exploiting the unsanitized user inputs. **Recommendations** For versions prior to 2.4.5, update to version 2.4.5 or later to resolve the issue. As a temporary workaround, consider restricting access to the plugin's functionality to minimize the risk of exploitation. Avoid using the plugin until the issue is resolved.

**Name of the Vulnerable Software and Affected Versions** The Track The Click WordPress plugin versions prior to 0.3.12 **Description** The issue arises from the plugin's failure to properly sanitize query parameters to the stats REST endpoint before using them in a database query. This allows a logged-in user with an author role or higher to perform time-based blind SQLi attacks on the database. Approximately 1,178 devices are potentially affected, mainly distributed in the United States and Germany. **Recommendations** For versions prior to 0.3.12, update to version 0.3.12 or later to resolve the issue. As a temporary workaround, consider restricting access to the stats REST endpoint until a patch is applied. Additionally, limiting the privileges of users with an author role or higher can help minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** The Newsletters WordPress plugin versions prior to 4.9.3 **Description** The issue arises from the plugin's failure to properly escape user-controlled parameters when they are appended to SQL queries and shell commands. This could enable an administrator to run arbitrary commands on the server. **Recommendations** For versions prior to 4.9.3, update to version 4.9.3 or later to resolve the issue. As a temporary workaround, consider restricting access to the plugin's functionality to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** The Easy Newsletter Signups WordPress plugin versions 1.0.0 through 1.0.4 **Description** The issue arises from the plugin's failure to properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection. This can be exploited by high privilege users such as admin. **Recommendations** For versions 1.0.0 through 1.0.4, update to a version that properly sanitises and escapes parameters used in SQL statements to prevent SQL injection. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** The History Log by click5 WordPress plugin versions prior to 1.0.13 **Description** The issue arises from improper sanitization and escaping of a parameter used in a SQL statement, leading to a SQL injection. This can be exploited by admin users when the Smash Balloon Social Photo Feed plugin is used alongside the affected plugin. **Recommendations** For versions prior to 1.0.13, update to version 1.0.13 or later to resolve the issue. As a temporary workaround, consider restricting access to the plugin's functionality to minimize the risk of exploitation by admin users.