Description
The Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the taxopress_ai_add_post_term function in all versions up to, and including, 3.41.0. This makes it possible for authenticated attackers, with Contributor-level access and above, to add or remove taxonomy terms (tags, categories) on any post, including ones they do not own.
Published: 2026-01-06
Score: 4.3 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Unauthorized taxonomy term modification
Action: Immediate Patch
AI Analysis

Impact

A missing capability check in the taxopress_ai_add_post_term function lets users with Contributor-level access and higher add or delete tags and categories on any WordPress post, even those they do not own. This flaw allows an attacker to alter content classification, influence search engine visibility, and potentially misdirect users. The vulnerability does not grant code execution or full system compromise, but it disrupts content integrity and trust.

Affected Systems

The issue affects the stevejburge WordPress plugin "Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI" in all releases up to and including version 3.41.0. Site administrators running any of these plugin versions are susceptible.

Risk and Exploitability

The CVSS score of 4.3 indicates a moderate impact, and the EPSS score of less than 1% suggests a low likelihood of exploitation. The flaw is not listed in the CISA KEV catalog. An authenticated user on a WordPress site who holds a Contributor role or higher can exploit the vulnerability simply by using the normal plugin interface or by constructing a crafted request to the taxopress AI Ajax endpoint. No additional conditions or elevated privileges are required beyond those granted by the standard Contributor capability.

Generated by OpenCVE AI on April 22, 2026 at 15:57 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update the TaxoPress plugin to version 3.42 or later, which includes the necessary authorization check.
  • If an immediate update is not possible, remove Contributor-level permissions from users who do not need to manage taxonomy terms, and enforce stricter role definitions.
  • After applying the update, review recent taxonomy changes on posts to detect and correct any unauthorized modifications that may have occurred.

Generated by OpenCVE AI on April 22, 2026 at 15:57 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 08 Apr 2026 17:00:00 +0000

Type Values Removed Values Added
References

Tue, 06 Jan 2026 15:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 06 Jan 2026 14:30:00 +0000

Type Values Removed Values Added
First Time appeared Taxopress
Taxopress taxopress
Wordpress
Wordpress wordpress
Vendors & Products Taxopress
Taxopress taxopress
Wordpress
Wordpress wordpress

Tue, 06 Jan 2026 07:30:00 +0000

Type Values Removed Values Added
Description The Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the taxopress_ai_add_post_term function in all versions up to, and including, 3.41.0. This makes it possible for authenticated attackers, with Contributor-level access and above, to add or remove taxonomy terms (tags, categories) on any post, including ones they do not own.
Title TaxoPress <= 3.41.0 - Missing Authorization to Authenticated (Contributor+) Arbitrary Post Tag Modification
Weaknesses CWE-862
References
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N'}

Subscriptions

Taxopress Taxopress
Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T16:40:55.659Z

Reserved: 2025-12-09T18:40:16.741Z

Link: CVE-2025-14371

cve-icon Vulnrichment

Updated: 2026-01-06T14:34:22.797Z

cve-icon NVD

Status : Deferred

Published: 2026-01-06T08:15:51.867

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-14371

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-22T16:00:12Z

Weaknesses