Description
The AI Engine plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.1.8 via the rest_helpers_create_images function. This makes it possible for authenticated attackers, with Editor-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services. On Cloud instances, this issue allows for metadata retrieving.
Published: 2025-11-18
Score: 6.8 Medium
EPSS: < 1% Very Low
KEV: No
Impact: Server‑Side Request Forgery
Action: Immediate Patch
AI Analysis

Impact

The AI Engine plugin for WordPress contains a Server‑Side Request Forgery vulnerability in the rest_helpers_create_images function. Authenticated users with Editor‑level or higher privileges can cause the application to perform HTTP requests to arbitrary URLs, allowing attackers to query or modify internal services and, on cloud environments, retrieve sensitive metadata.

Affected Systems

The affected product is AI Engine – The Chatbot, AI Framework & MCP for WordPress. Versions up to and including 3.1.8 are impacted.

Risk and Exploitability

The CVSS score of 6.8 indicates moderate severity, while the EPSS score of less than 1% suggests low exploitation likelihood. The vulnerability is not listed in the CISA KEV catalog. Exploitation requires authenticated access; authorized users with Editor privileges can trigger SSRF, potentially exposing internal information or manipulating services.

Generated by OpenCVE AI on April 21, 2026 at 01:30 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Upgrade AI Engine to a version that removes the SSRF flaw (3.1.9 or newer).
  • Restrict or remove Editor and higher roles from users who do not need rights to create or manage images, thereby limiting the attack surface.
  • Deploy a web application firewall or reverse proxy configured to block outbound requests to private IP ranges and disallow DNS resolution of internal domains.

Generated by OpenCVE AI on April 21, 2026 at 01:30 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Thu, 20 Nov 2025 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Wordpress
Wordpress wordpress
Vendors & Products Wordpress
Wordpress wordpress

Tue, 18 Nov 2025 22:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Tue, 18 Nov 2025 12:45:00 +0000

Type Values Removed Values Added
Description The AI Engine plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.1.8 via the rest_helpers_create_images function. This makes it possible for authenticated attackers, with Editor-level access and above, to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services. On Cloud instances, this issue allows for metadata retrieving.
Title AI Engine <= 3.1.8 - Authenticated (Editor+) Server-Side Request Forgery
Weaknesses CWE-918
References
Metrics cvssV3_1

{'score': 6.8, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:N'}

Subscriptions

Wordpress Wordpress
cve-icon MITRE

Status: PUBLISHED

Assigner: Wordfence

Published:

Updated: 2026-04-08T16:47:10.488Z

Reserved: 2025-07-23T13:29:23.642Z

Link: CVE-2025-8084

cve-icon Vulnrichment

Updated: 2025-11-18T20:30:22.954Z

cve-icon NVD

Status : Deferred

Published: 2025-11-18T15:16:38.073

Modified: 2026-04-15T00:35:42.020

Link: CVE-2025-8084

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-04-21T01:45:24Z

Weaknesses