Description
The S2B AI Assistant – ChatBot, ChatGPT, OpenAI, Content & Image Generator plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the storeFile() function in all versions up to, and including, 1.7.8. This makes it possible for authenticated attackers, with Editor-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
Published: 2025-11-21
Score: 7.2 High
EPSS: < 1% Very Low
KEV: No
Impact: Remote Code Execution via Arbitrary File Upload
Action: Patch Plugin
AI Analysis

Impact

The S2B AI Assistant – ChatBot plugin for WordPress allows authenticated users with Editor role or higher to upload files without validating file type. The storeFile() function accepts any file, so an attacker can upload a malicious script, application, or binary onto the server. If the uploaded file is later executed, it can lead to remote code execution, compromising site integrity and potentially the entire hosting environment.

Affected Systems

The vulnerability affects all versions of the S2B AI Assistant – ChatBot, AI Agents, ChatGPT API, Image Generator plugin released by oc3dots, specifically the variants for WordPress that are version 1.7.8 or older. No other versions or products are listed as affected.

Risk and Exploitability

The CVSS score of 7.2 indicates a high severity for this issue. Because the EPSS score is lower than 1%, immediate exploitation is unlikely, and the vulnerability is not currently listed in the CISA KEV catalog. However, evidence from the description shows that an authenticated attacker with Editor-level access can upload arbitrary files, and if that file is executable on the server, remote code execution becomes possible. The risk is confined to systems where the plugin is installed and the upload directory is within the WordPress file system.

Generated by OpenCVE AI on April 21, 2026 at 18:03 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Apply the most recent official update to the S2B AI Assistant plugin after the vendor releases a fix for the file‑type validation flaw.
  • If a patch is not yet available, disable the plugin or remove Editor users from any role that grants file upload capability to prevent further uploads.
  • Configure the server (e.g., via .htaccess or server block) to disallow execution of files in the plugin’s upload directory, ensuring uploaded content cannot run as code.

Generated by OpenCVE AI on April 21, 2026 at 18:03 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Mon, 24 Nov 2025 09:15:00 +0000

Type Values Removed Values Added
First Time appeared Oc3dots
Oc3dots s2b Ai Assistant
Wordpress
Wordpress wordpress
Vendors & Products Oc3dots
Oc3dots s2b Ai Assistant
Wordpress
Wordpress wordpress

Fri, 21 Nov 2025 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}

Fri, 21 Nov 2025 16:45:00 +0000

Type Values Removed Values Added
Description The S2B AI Assistant – ChatBot, ChatGPT, OpenAI, Content & Image Generator plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the storeFile() function in all versions up to, and including, 1.7.8. This makes it possible for authenticated attackers, with Editor-level access and above, to upload arbitrary files on the affected site's server which may make remote code execution possible.
Title S2B AI Assistant – ChatBot, ChatGPT, OpenAI, Content & Image Generator <= 1.7.8 - Authenticated (Editor+) Arbitrary File Upload
Weaknesses CWE-434
References
Metrics cvssV3_1

{'score': 7.2, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H'}

Subscriptions

Oc3dots S2b Ai Assistant
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T17:14:56.115Z

Reserved: 2025-11-10T18:15:08.875Z

Link: CVE-2025-12973

cve-icon Vulnrichment

Updated: 2025-11-21T16:39:56.803Z

cve-icon NVD

Status : Deferred

Published: 2025-11-21T17:15:50.267

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-12973

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-21T18:15:36Z

Weaknesses