Bitapps Bit_assist
5 CVEs affecting Bitapps Bit_assist. Latest disclosed: 2025-02-15. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2025-0822 | Medium | 6.5 | 2025-02-15 | Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.5.2 via the fileID Parameter. This makes it possible fo… |
CVE-2025-0821 | Medium | 6.5 | 2025-02-14 | Bit Assist plugin for WordPress is vulnerable to time-based SQL Injection via the ‘id’ parameter in all versions up to, and including, 1.5.2 due to insufficien… |
CVE-2023-51371 | Medium | 5.9 | 2023-12-29 | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Bit Assist Chat Widget: WhatsApp Chat, Facebook Messenger… |
CVE-2024-13791 | Medium | 4.9 | 2025-02-14 | Bit Assist plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 1.5.2 via the downloadResponseFile() function. This makes… |
CVE-2023-3667 | Medium | 4.8 | 2023-08-21 | The Bit Assist WordPress plugin before 1.1.9 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform… |