Lucene search

K
patchstackWordFencePATCHSTACK:10224D0AD5FD3B72417F66080BC20FB0
HistoryJul 28, 2023 - 12:00 a.m.

WordPress AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One Plugin <= 1.4.3 is vulnerable to Server Side Request Forgery (SSRF)

2023-07-2800:00:00
WordFence
patchstack.com
1
wordpress
content writing assistant
plugin
vulnerability
server side request forgery
owasp
injection
low priority
patch
cvss
wordfence
editor
security issue

AI Score

7.2

Confidence

Low

Software

AI Content Writing Assistant (Content Writer, ChatGPT, Image Generator) All in One

Type

Plugin

Vulnerable versions

<= 1.4.3

Fixed in

1.4.4

OWASP Top 10

A1: Injection

Classification

Server Side Request Forgery (SSRF)

CVE

N/A

Patch priority

Low

CVSS severity

Low (5.5)

Developer

Claim ownership

PSID

6056aae15322

Credits

WordFence

Required privilege

Editor

Published

28 July, 2023

Vulnerability details

Remove and replace plugin Expand full details Have additional information or questions about this entry? Let us know.

Solution

This security issue has a low severity impact and is unlikely to be exploited.

Affected configurations

Vulners
Node
recorpai_content_writing_assistant_\(content_writer\,_chatgpt\,_image_generator\)_all_in_oneRange1.4.3
VendorProductVersionCPE
recorpai_content_writing_assistant_\(content_writer\,_chatgpt\,_image_generator\)_all_in_one*cpe:2.3:a:recorp:ai_content_writing_assistant_\(content_writer\,_chatgpt\,_image_generator\)_all_in_one:*:*:*:*:*:*:*:*

AI Score

7.2

Confidence

Low