Skip to main content

AI Engine CVE-2026-12511

| EUVDEUVD-2026-43626 HIGH
2026-07-14 WPScan GHSA-jp8h-m8g9-6fvr
8.1
CVSS 3.1 · Vendor: WPScan
Share

Severity by source

Vendor (WPScan) PRIMARY
8.1 HIGH
AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
vuln.today AI
8.1 HIGH

Network-reachable endpoint (AV:N) with low complexity (AC:L) needs an editor account (PR:L) and no interaction; arbitrary file write yields high confidentiality/integrity impact, availability not directly affected.

3.1 AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
4.0 AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (WPScan).

CVSS VectorVendor: WPScan

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N
Attack Vector
Network
Attack Complexity
Low
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
None

Lifecycle Timeline

5
Analysis Generated
Jul 14, 2026 - 13:23 vuln.today
CVSS changed
Jul 14, 2026 - 13:22 NVD
8.1 (HIGH)
Patch available
Jul 14, 2026 - 11:17 EUVD
CVE Published
Jul 14, 2026 - 06:00 cve.org
HIGH 8.1
CVE Published
Jul 14, 2026 - 06:00 cve.org
UNKNOWN (no severity yet)

DescriptionCVE.org

The AI Engine WordPress plugin before 3.5.5 does not sanitize a user-supplied filename before using it to write a downloaded file, allowing authenticated users with editor-level access to write attacker-controlled bytes to an arbitrary location on the server via path traversal.

AnalysisAI

Arbitrary file write in the AI Engine WordPress plugin before 3.5.5 lets authenticated editor-level users abuse an unsanitized, user-supplied filename during a file-download-and-save operation to plant attacker-controlled bytes anywhere the web server user can write via path traversal. Because writing a PHP payload into the webroot typically yields remote code execution, this crosses from a content-management flaw into full site compromise. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Obtain editor-level WordPress credentials
Delivery
Call plugin download-save with traversal filename
Exploit
Write PHP payload into webroot
Execution
Request planted file over HTTP
Persist
Execute arbitrary code as web user
Impact
Full site compromise

Vulnerability AssessmentAI

Exploitation Exploitation requires an authenticated WordPress account with editor-level (or higher) privileges on a site running AI Engine before 3.5.5, and the attacker must reach the plugin feature that downloads a file and writes it using a caller-supplied filename - the traversal lives in that filename parameter. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 vector (AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N, score 8.1) describes low-complexity, network-reachable exploitation requiring only editor-level authentication and no user interaction, with high confidentiality and integrity impact but no availability impact - consistent with an arbitrary file write that can escalate to code execution. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker who has obtained editor-level credentials (via phishing, credential stuffing, or a compromised contributor) invokes the plugin's download-and-save function with a crafted filename containing traversal sequences, causing a PHP web shell to be written into the WordPress webroot. They then request that file over HTTP to execute arbitrary code and take over the site. …
Remediation Upgrade the AI Engine plugin to version 3.5.5 or later, which is the vendor-released fix (Patch available per vendor advisory; fixed at the 3.5.5 boundary per EUVD). … Detailed patch versions, workarounds, and compensating controls in full report.

Recommended ActionAI

Within 24 hours, identify all WordPress instances running the AI Engine plugin and document the installed version; if the plugin is not critical to operations, disable it until patching is complete. …

Sign in for detailed remediation steps and compensating controls.

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2023-51409 CRITICAL POC
10.0 Apr 12

Unrestricted file upload in Jordy Meow's AI Engine: ChatGPT Chatbot plugin for WordPress (versions up to and including 1

CVE-2024-10499 HIGH POC
7.2 Dec 12

The AI Engine WordPress plugin before 2.6.5 does not sanitize and escape a parameter from one of its RESP API endpoint b

CVE-2024-6451 HIGH POC
7.2 Aug 19

AI Engine < 2.4.3 is susceptible to remote-code-execution (RCE) via Log Poisoning. Rated high severity (CVSS 7.2), this

CVE-2024-29090 MEDIUM POC
6.8 Mar 28

Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.1.4. Rated medium severity (CV

CVE-2024-34440 CRITICAL
9.1 May 14

Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.2.63. Rated criti

CVE-2024-29100 CRITICAL
9.1 Mar 28

Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.1.4. Rated critic

CVE-2025-5071 HIGH
8.8 Jun 19

The AI Engine WordPress plugin (versions 2.8.0-2.8.3) contains a missing capability check in the 'Meow_MWAI_Labs_MCP::ca

CVE-2023-2580 MEDIUM POC
4.8 Jun 27

The AI Engine WordPress plugin before 1.6.83 does not sanitize and escape some of its settings, which could allow high-p

CVE-2024-6723 MEDIUM POC
4.7 Sep 13

The AI Engine WordPress plugin before 2.4.8 does not properly sanitise and escape a parameter before using it in a SQL s

CVE-2024-0699 MEDIUM
6.6 Feb 05

The AI Engine: Chatbots, Generators, Assistants, GPT 4 and more!. Rated medium severity (CVSS 6.6), this vulnerability i

CVE-2025-6238 HIGH
8.0 Jul 04

The AI Engine plugin for WordPress is vulnerable to open redirect in version 2.8.4. This is due to an insecure OAuth imp

CVE-2024-0378 MEDIUM
6.5 Mar 02

The AI Engine: Chatbots, Generators, Assistants, GPT 4 and more!. Rated medium severity (CVSS 6.5), this vulnerability i

Share

CVE-2026-12511 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy