Lucene search
PatchstackCVE-2024-29090HistoryMar 28, 2024 - 6:15 a.m.
CVE-2024-29090
2024-03-2806:15:12
CWE-918
Patchstack
web.nvd.nist.gov
32
ssrf
vulnerability
jordy meow ai engine
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This issue affects AI Engine: ChatGPT Chatbot: from n/a through 2.1.4.
Affected configurations
Node
jordy_meowmedia_file_renamerRange≤2.1.4wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| jordy_meow | media_file_renamer | * | cpe:2.3:a:jordy_meow:media_file_renamer:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "ai-engine",
"product": "AI Engine: ChatGPT Chatbot",
"vendor": "Jordy Meow",
"versions": [
{
"changes": [
{
"at": "2.1.5",
"status": "unaffected"
}
],
"lessThanOrEqual": "2.1.4",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
vulnrichment
vulnrichment
wpvulndb
wpvulndb
AI Engine < 2.1.5 - Authenticated (Editor+) Server-Side Request Forgery
2024-05-07 00:00:00
nvd
nvd
CVE-2024-29090
2024-03-28 06:15:12
cvelist
cvelist
CVSS3
6.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
NONE
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N
AI Score
6.8
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2024-29090