Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/06/26 9:22 a.m.18 views

CVE-2025-6206

The Aiomatic - Automatic AI Content Writer & Editor, GPT-3 & GPT-4, ChatGPT ChatBot & AI Toolkit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'aiomaticimageeditorajaxsubmit' function in all versions up to, and including, 2.5.0. This makes...

7.5CVSS8AI score0.00456EPSS
Exploits0References1
NVD
NVD
added 2025/06/24 9:15 a.m.12 views

CVE-2025-6206

The Aiomatic - Automatic AI Content Writer & Editor, GPT-3 & GPT-4, ChatGPT ChatBot & AI Toolkit plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'aiomaticimageeditorajaxsubmit' function in all versions up to, and including, 2.5.0. This makes...

7.5CVSS0.00456EPSS
Exploits0References2
CVE
CVE
added 2025/06/24 8:23 a.m.39 views

CVE-2025-6206

CVE-2025-6206 concerns the WordPress plugin Aiomatic - AI Content Writer & Editor (versions up to 2.5.0). The issue is an arbitrary file upload flaw caused by missing file-type validation in the aiomatic_image_editor_ajax_submit function. It requires an authenticated user with Subscriber+ privile...

7.5CVSS7.7AI score0.00456EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2025/06/23 9:7 p.m.10 views

WordPress Aiomatic plugin <= 2.5.0 - Authenticated (Subscriber+) Arbitrary File Upload vulnerability

Authenticated Subscriber+ Arbitrary File Upload vulnerability discovered by khanhhnahk1 in WordPress Plugin Aiomatic versions = 2.5.0...

7.5CVSS6.8AI score0.00456EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder