Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/07/26 9:35 a.m.19 views

CVE-2025-7780

The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.4. The simpleTranscribeAudio endpoint fails to restrict URL schemes before calling getaudio. This makes it possible for authenticated attackers, with Subscriber-level acces...

6.5CVSS6.8AI score0.00505EPSS
Exploits0References1
NVD
NVD
added 2025/07/24 10:15 a.m.4 views

CVE-2025-7780

The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.4. The simpleTranscribeAudio endpoint fails to restrict URL schemes before calling getaudio. This makes it possible for authenticated attackers, with Subscriber-level acces...

6.5CVSS0.00505EPSS
Exploits0References5
Circl
Circl
added 2025/07/24 9:38 a.m.6 views

CVE-2025-7780

creationtimestamp| type| source ---|---|--- 2025-07-24 09:38:25+00:00| seen| Telegram/n2X3BjsuuTA1kKBHKflXMps4Ewm2yQcfNlMJXB5UJM21GTM...

6.5CVSS4.8AI score0.00505EPSS
Exploits0
Cvelist
Cvelist
added 2025/07/24 9:22 a.m.27 views

CVE-2025-7780 AI Engine <= 2.9.4 - Missing URL Scheme Validation to Authenticated (Subscriber+) Arbitrary File Read via simpleTranscribeAudio and get_audio Functions

The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.4. The simpleTranscribeAudio endpoint fails to restrict URL schemes before calling getaudio. This makes it possible for authenticated attackers, with Subscriber-level acces...

6.5CVSS0.00505EPSS
Exploits0References5
Patchstack
Patchstack
added 2025/07/23 9:28 p.m.9 views

WordPress Ai Engine plugin <= 2.9.4 - Missing URL Scheme Validation to Authenticated (Subscriber+) Arbitrary File Read via simpleTranscribeAudio and get_audio Functions vulnerability

Missing URL Scheme Validation to Authenticated Subscriber+ Arbitrary File Read via simpleTranscribeAudio and getaudio Functions vulnerability discovered by ISMAILSHADOW in WordPress Plugin AI Engine versions = 2.9.4...

6.5CVSS6.7AI score0.00505EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder