VYPR

Scribe

by Scribe

CVEs (5)

  • CVE-2024-12606MedJan 10, 2025
    risk 0.21cvss 4.3epss 0.00

    The AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3, AI WordPress Plugin ChatGPT (GPT-4o 128K) plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the engine_request_data()…

  • CVE-2024-12605MedJan 9, 2025
    risk 0.21cvss 4.3epss 0.00

    The AI Scribe – SEO AI Writer, Content Generator, Humanizer, Blog Writer, SEO Optimizer, DALLE-3, AI WordPress Plugin ChatGPT (GPT-4o 128K) plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.5. This is due to missing or…

  • CVE-2008-0822Feb 19, 2008
    risk 0.03cvss epss 0.02

    Directory traversal vulnerability in index.php in Scribe 0.2 allows remote attackers to read arbitrary local files via a .. (dot dot) in the page parameter.

  • CVE-2007-5823Nov 5, 2007
    risk 0.03cvss epss 0.03

    Directory traversal vulnerability in forum.php in Ben Ng Scribe 0.2 and earlier allows remote attackers to create or overwrite arbitrary files via a .. (dot dot) in the username parameter in a Register action.

  • CVE-2007-5822Nov 5, 2007
    risk 0.03cvss epss 0.03

    Direct static code injection vulnerability in forum.php in Ben Ng Scribe 0.2 and earlier allows remote attackers to inject arbitrary PHP code into a certain file in regged/ via the username parameter in a Register action, possibly related to the register function in…