Skip to main content

AI Engine EUVDEUVD-2026-44874

| CVE-2026-12510 MEDIUM
Authorization Bypass Through User-Controlled Key (CWE-639)
2026-07-16 WPScan GHSA-8rhw-c8ph-cp97
5.9
CVSS 3.1 · Vendor: WPScan
Share

Severity by source

Vendor (WPScan) PRIMARY
5.9 MEDIUM
AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
vuln.today AI
5.9 MEDIUM

Subscriber authentication required (PR:L), identifier enumeration adds complexity (AC:H); full read of targeted conversation (C:H), limited write via record overwrite (I:L), no availability impact.

3.1 AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
4.0 AV:N/AC:H/AT:P/PR:L/UI:N/VC:H/VI:L/VA:N/SC:N/SI:N/SA:N

Primary rating from Vendor (WPScan).

CVSS VectorVendor: WPScan

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N
Attack Vector
Network
Attack Complexity
High
Privileges Required
Low
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
Low
Availability
None

Lifecycle Timeline

5
Analysis Generated
Jul 16, 2026 - 16:26 vuln.today
CVSS changed
Jul 16, 2026 - 16:22 NVD
5.9 (MEDIUM)
Patch available
Jul 16, 2026 - 10:18 EUVD
CVE Published
Jul 16, 2026 - 06:00 cve.org
MEDIUM 5.9
CVE Published
Jul 16, 2026 - 06:00 cve.org
UNKNOWN (no severity yet)

DescriptionCVE.org

The AI Engine WordPress plugin before 3.5.5 does not verify that a user owns the chatbot conversation referenced by a client-supplied identifier, allowing users with subscriber-level access to read other users' private conversations and take over their conversation records when the discussions feature is enabled.

AnalysisAI

Unauthorized access to private chatbot conversations in the AI Engine WordPress plugin before 3.5.5 allows any authenticated subscriber-level user to both read and overwrite other users' chat records when the discussions feature is enabled. The plugin fails to verify that a client-supplied conversation identifier belongs to the requesting user (CWE-639 IDOR), enabling session data theft and record hijacking. …

Unlock full vulnerability intelligence

  • Risk assessment & exploitation conditions
  • Attack chain visualization
  • Remediation with exact patch versions
  • Threat intelligence from 22 sources
  • Personal watchlist & email alerts

Free forever · No credit card required

Attack ChainAIDerived

Hypothetical attack flow derived from CVE metadata

Access
Register or obtain subscriber WordPress account
Delivery
Enable discussions on target AI Engine instance
Exploit
Enumerate chatbot conversation identifiers
Execution
Supply foreign user's conversation ID in API request
Persist
Read victim's private conversation data
Impact
Overwrite victim's conversation records

Vulnerability AssessmentAI

Exploitation Requires an authenticated WordPress account at subscriber level or higher - unauthenticated exploitation is not possible per the CVSS PR:L vector. … Additional conditions and limiting factors are described in the full assessment.
Risk Assessment The CVSS 3.1 score of 5.9 (CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:H/I:L/A:N) reflects network exploitability with meaningful constraints: PR:L confirms at minimum a subscriber-level WordPress account is required, and AC:H indicates non-trivial complexity, most likely identifier enumeration. … Full risk analysis with EPSS, KEV, and SSVC signal comparison available after sign-in.
Exploit Scenario An attacker registers or uses an existing subscriber-level WordPress account on the target site, then sends API requests referencing conversation identifiers that belong to other users - cycling through IDs to locate valid records. Because the plugin performs no ownership verification, the attacker successfully retrieves private AI chatbot conversations from other users and can overwrite those records. …
Remediation Update the AI Engine WordPress plugin to version 3.5.5 or later immediately, as a vendor patch is confirmed available. … Detailed patch versions, workarounds, and compensating controls in full report.

Threat intelligence, references, and detailed analysis are available after sign-in.

CVE-2023-51409 CRITICAL POC
10.0 Apr 12

Unrestricted file upload in Jordy Meow's AI Engine: ChatGPT Chatbot plugin for WordPress (versions up to and including 1

CVE-2026-12511 HIGH POC
8.1 Jul 14

Arbitrary file write in the AI Engine WordPress plugin before 3.5.5 lets authenticated editor-level users abuse an unsan

CVE-2024-10499 HIGH POC
7.2 Dec 12

The AI Engine WordPress plugin before 2.6.5 does not sanitize and escape a parameter from one of its RESP API endpoint b

CVE-2024-6451 HIGH POC
7.2 Aug 19

AI Engine < 2.4.3 is susceptible to remote-code-execution (RCE) via Log Poisoning. Rated high severity (CVSS 7.2), this

CVE-2024-29090 MEDIUM POC
6.8 Mar 28

Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.1.4. Rated medium severity (CV

CVE-2024-34440 CRITICAL
9.1 May 14

Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.2.63. Rated criti

CVE-2024-29100 CRITICAL
9.1 Mar 28

Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.1.4. Rated critic

CVE-2025-5071 HIGH
8.8 Jun 19

The AI Engine WordPress plugin (versions 2.8.0-2.8.3) contains a missing capability check in the 'Meow_MWAI_Labs_MCP::ca

CVE-2023-2580 MEDIUM POC
4.8 Jun 27

The AI Engine WordPress plugin before 1.6.83 does not sanitize and escape some of its settings, which could allow high-p

CVE-2024-6723 MEDIUM POC
4.7 Sep 13

The AI Engine WordPress plugin before 2.4.8 does not properly sanitise and escape a parameter before using it in a SQL s

CVE-2024-0699 MEDIUM
6.6 Feb 05

The AI Engine: Chatbots, Generators, Assistants, GPT 4 and more!. Rated medium severity (CVSS 6.6), this vulnerability i

CVE-2025-6238 HIGH
8.0 Jul 04

The AI Engine plugin for WordPress is vulnerable to open redirect in version 2.8.4. This is due to an insecure OAuth imp

Share

EUVD-2026-44874 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy