Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

cliengo — Vulnerabilities & Security Advisories 4

Browse all 4 CVE security advisories affecting cliengo. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Cliengo provides lead generation and chat solutions for websites, helping businesses capture and convert visitor interactions. Historically, the platform has been affected by multiple cross-site scripting (XSS) vulnerabilities and remote code execution flaws, often stemming from improper input validation and insecure direct object references. While no major public security incidents have been documented, the four recorded CVEs highlight persistent risks in web application security, particularly around user-generated content handling and third-party integrations. These vulnerabilities could allow attackers to execute arbitrary code, steal session cookies, or manipulate chat functionality if exploited.

Top products by cliengo: Cliengo – Chatbot
CVE IDTitleCVSSSeverityPublished
CVE-2025-69388 WordPress Cliengo – Chatbot plugin <= 3.0.4 - Broken Access Control vulnerability — Cliengo – ChatbotCWE-862 6.5 Medium2026-02-20
CVE-2024-5992 Cliengo - Chatbot <= 3.0.2 - Missing Authorization to Unauthenticated Chatbot Settings Update — Cliengo – ChatbotCWE-862 6.5 Medium2024-07-09
CVE-2024-5993 Cliengo - Chatbot <= 3.0.2 - Missing Authorization to Authorized (Subscriber+) Chatbot Settings Update — Cliengo – ChatbotCWE-862 5.4 Medium2024-07-09
CVE-2024-37923 WordPress Cliengo – Chatbot plugin <= 3.0.4 - Cross Site Request Forgery (CSRF) vulnerability — Cliengo – ChatbotCWE-352 5.4 Medium2024-07-09

This page lists every published CVE security advisory associated with cliengo. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.