2 matches found
CVE-2024-6451 AI Engine < 2.5.1 - Admin+ RCE
AI Engine 2.4.3 is susceptible to remote-code-execution RCE via Log Poisoning. The AI Engine WordPress plugin before 2.5.1 fails to validate the file extension of "logspath", allowing Administrators to change log filetypes from .log to .php...
WordPress AI Engine: ChatGPT Chatbot Plugin < 2.5.1 is vulnerable to Remote Code Execution (RCE)
Software AI Engine: ChatGPT Chatbot Type Plugin Vulnerable versions 2.5.1 Fixed in 2.5.1 OWASP Top 10 A1: Injection Classification Remote Code Execution RCE CVE CVE-2024-6451 Patch priority Low CVSS severity Low 9.1 Developer Claim ownership PSID 16f5f51a51d0 Credits Karolis Narvilas Required...