Where should operators start on this Plugin hub?

Start with the priority CVE quick links, then open the full report for affected versions, remediation notes, CVSS vectors, and source references.

Plugin Vulnerability Hub

Plugin 24 known issues Latest disclosed May 28, 2026

AI Engine – The Chatbot, AI Framework & MCP for WordPress Vulnerabilities

Q: Which AI Engine – The Chatbot, AI Framework & MCP for WordPress CVEs are tracked?

AI Engine – The Chatbot, AI Framework & MCP for WordPress tracked CVEs include CVE-2025-11749, CVE-2023-51409, CVE-2024-34440, CVE-2026-8719, and CVE-2025-7847.

Q: How many AI Engine – The Chatbot, AI Framework & MCP for WordPress vulnerabilities have patch guidance?

24 of 24 tracked AI Engine – The Chatbot, AI Framework & MCP for WordPress records include a published patch path.

Review known vulnerability records for the WordPress plugin AI Engine – The Chatbot, AI Framework & MCP for WordPress (`ai-engine`), including severity, CVE references, affected versions, and patch status.

Recent tracked CVEs on this page include CVE-2026-27407, CVE-2026-8719 and CVE-2026-23802, so operators can jump from disclosure to patch validation without scanning the full feed first.

View on WordPress.org Back to Feed

Known Records

High or Critical

Patch Coverage

100%

Last Updated

Jun 02, 2026

Related Security Guides

Use these guides while reviewing AI Engine – The Chatbot, AI Framework & MCP for WordPress fixes

Pair this plugin vulnerability hub with practical WordPress hardening, scanner, and patch workflow guidance.

Hardening

WordPress hardening checklist for exposed plugins

Review patch cadence, privileged access, XML-RPC exposure, backups, and monitoring controls.

Plugin Security

WordPress plugin security basics for patch decisions

Use ownership, update testing, least privilege, and removal criteria to reduce plugin risk.

Scanning

WordPress vulnerability scanner buyer's guide

Compare scanner coverage for plugin CVEs, version detection, alert noise, and remediation workflow.

Patch Decision Workflow

How to prioritize AI Engine – The Chatbot, AI Framework & MCP for WordPress remediation

Use the hub as a decision layer before opening individual records: confirm whether the issue has a CVE, whether a fixed version exists, and whether the affected range overlaps production installs.

Search-Ready Records

1. Match the Package

Confirm the installed WordPress plugin slug is ai-engine before acting on any CVE from this cluster.

2. Sort by Severity

Start with 12 high or critical records, then review medium and unrated findings with public references.

3. Check Patch Evidence

24 records include a patch path; verify compatibility before closing the finding.

4. Monitor Gaps

0 records still lack a listed fixed release, so keep this hub in the review queue.

High-Signal Remediation Targets

CVE-2025-11749 Critical

Sensitive Information Exposure remediation for AI Engine – The Chatbot, AI Framework & MCP for WordPress

Affected range: Versions up to 3.1.3. Fixed version: 3.1.4.

CVE-2023-51409 Critical

Remote Code Execution remediation for AI Engine – The Chatbot, AI Framework & MCP for WordPress

Affected range: Versions up to 1.9.98. Fixed version: 1.9.99.

CVE-2024-34440 Critical

Remote Code Execution remediation for AI Engine – The Chatbot, AI Framework & MCP for WordPress

Affected range: Versions up to 2.2.63. Fixed version: 2.2.70.

CVE-2026-8719 High

Privilege Escalation remediation for AI Engine – The Chatbot, AI Framework & MCP for WordPress

Affected range: 3.4.9 through 3.4.9. Fixed version: 3.5.0.

Priority CVE Quick Links

Fast paths into AI Engine – The Chatbot, AI Framework & MCP for WordPress CVE reports

Start with the highest-signal CVE records for this WordPress plugin before scanning the full vulnerability feed.

Indexed CVEs

Tracked CVE	Issue Type	Affected Versions	Fixed Version	CVSS
CVE-2025-11749 AI Engine <= 3.1.3 - Unauthenticated Sensitive Information Exposure to Privilege Esc...	Sensitive Information Exposure	Versions up to 3.1.3	3.1.4	CVSS 9.8
CVE-2023-51409 AI Engine: ChatGPT Chatbot <= 1.9.98 - Unauthenticated Arbitrary File Upload via res...	Remote Code Execution	Versions up to 1.9.98	1.9.99	CVSS 9.8
CVE-2024-34440 AI Engine: ChatGPT Chatbot <= 2.2.63 - Authenticated (Editor+) Arbitrary File Upload	Remote Code Execution	Versions up to 2.2.63	2.2.70	CVSS 9.1
CVE-2026-8719 AI Engine 3.4.9 - Authenticated (Subscriber+) Privilege Escalation via Missing Autho...	Privilege Escalation	3.4.9 through 3.4.9	3.5.0	CVSS 8.8
CVE-2025-7847 AI Engine 2.9.3 - 2.9.4 - Authenticated (Subscriber+) Arbitrary File Upload	Remote Code Execution	2.9.3 through 2.9.4	2.9.5	CVSS 8.8
CVE-2025-5071 AI Engine 2.8.0 - 2.8.3 - Authenticated (Subscriber+) Insufficient Authorization to...	Privilege Escalation	2.8.0 through 2.8.3	2.8.4	CVSS 8.8
CVE-2025-6238 AI Engine 2.8.4 - Insecure OAuth Implementation	Vulnerability	2.8.4 through 2.8.4	2.8.5	CVSS 8.0
CVE-2026-27407 AI Engine – The Chatbot, AI Framework & MCP for WordPress <= 3.4.9 - Authenticated (...	Privilege Escalation	Versions up to 3.4.9	3.5.0	CVSS 7.2

CVE-2025-11749 Critical 3.1.4

CVE-2025-11749 AI Engine – The Chatbot, AI Framework & MCP for WordPress Sensitive Information Exposure

AI Engine <= 3.1.3 - Unauthenticated Sensitive Information Exposure to Privilege Escalation

CVE-2023-51409 Critical 1.9.99

CVE-2023-51409 AI Engine – The Chatbot, AI Framework & MCP for WordPress Remote Code Execution

AI Engine: ChatGPT Chatbot <= 1.9.98 - Unauthenticated Arbitrary File Upload via rest_upload

CVE-2024-34440 Critical 2.2.70

CVE-2024-34440 AI Engine – The Chatbot, AI Framework & MCP for WordPress Remote Code Execution

AI Engine: ChatGPT Chatbot <= 2.2.63 - Authenticated (Editor+) Arbitrary File Upload

CVE-2026-8719 High 3.5.0

CVE-2026-8719 AI Engine – The Chatbot, AI Framework & MCP for WordPress Privilege Escalation

AI Engine 3.4.9 - Authenticated (Subscriber+) Privilege Escalation via Missing Authorization in MCP OAuth Bearer Token

CVE-2025-7847 High 2.9.5

CVE-2025-7847 AI Engine – The Chatbot, AI Framework & MCP for WordPress Remote Code Execution

AI Engine 2.9.3 - 2.9.4 - Authenticated (Subscriber+) Arbitrary File Upload

CVE-2025-5071 High 2.8.4

CVE-2025-5071 AI Engine – The Chatbot, AI Framework & MCP for WordPress Privilege Escalation

AI Engine 2.8.0 - 2.8.3 - Authenticated (Subscriber+) Insufficient Authorization to Privilege Escalation via MCP

CVE-2025-6238 High 2.8.5

CVE-2025-6238 AI Engine – The Chatbot, AI Framework & MCP for WordPress Vulnerability

AI Engine 2.8.4 - Insecure OAuth Implementation

CVE-2026-27407 High 3.5.0

CVE-2026-27407 AI Engine – The Chatbot, AI Framework & MCP for WordPress Privilege Escalation

AI Engine – The Chatbot, AI Framework & MCP for WordPress <= 3.4.9 - Authenticated (Editor+) Privilege Escalation

Coverage Snapshot

What this page helps you verify fast

This hub clusters tracked records for AI Engine – The Chatbot, AI Framework & MCP for WordPress so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.

Patch Visibility

24 records include a published patch path, leaving 0 with no listed safe release yet.

Severity Mix

3 critical and 9 high severity findings.

Recent CVEs

CVE-2026-27407, CVE-2026-8719 and CVE-2026-23802

Reference Workflow

Jump from the hub into the full report when you need remediation notes, exploit context, CVSS vectors, or source references.

Triage First

Open the records most likely to drive action

These recent records surface the CVE strings, patch cues, and direct report links most operators need first.

CVE-2026-27407 High Patch path listed

CVE-2026-27407: AI Engine – The Chatbot, AI Framework & MCP for WordPress <= 3.4.9 - Authenticated (Editor+) Privilege Escalation

The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 3.4.9. This makes it possible f...

Published

May 28, 2026

Patch Status

3.5.0

Review CVE-2026-27407 affected versions

CVE-2026-8719 High Patch path listed

CVE-2026-8719: AI Engine 3.4.9 - Authenticated (Subscriber+) Privilege Escalation via Missing Authorization in MCP OAuth Bearer Token

The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to Privilege Escalation in version 3.4.9. This is due to missing WordPress capability enforce...

Published

May 16, 2026

Patch Status

3.5.0

Review CVE-2026-8719 affected versions

CVE-2026-23802 High Patch path listed

CVE-2026-23802: AI Engine – The Chatbot, AI Framework & MCP for WordPress <= 3.3.2 - Authenticated (Editor+) Arbitrary File Upload

The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and incl...

Published

Feb 25, 2026

Patch Status

3.3.3

Review CVE-2026-23802 affected versions

Known Vulnerabilities

Reports for AI Engine – The Chatbot, AI Framework & MCP for WordPress

Sorted by latest disclosure date so newly published issues surface first.

Plugin High Patched: Yes CVE-2026-27407

CVE-2026-27407: AI Engine – The Chatbot, AI Framework & MCP for WordPress <= 3.4.9 - Authenticated (Editor+) Privilege Escalation

The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 3.4.9. This makes it possible for authenticated attackers, with Editor-level access and above, to elevate their privilege...

Published

May 28, 2026

Patched Release

3.5.0

Affected Versions

Versions up to 3.4.9

Next Step

Update to 3.5.0 or newer if supported.

Review CVE-2026-27407 fixed version details Open CVE Reference

Plugin High Patched: Yes CVE-2026-8719

CVE-2026-8719: AI Engine 3.4.9 - Authenticated (Subscriber+) Privilege Escalation via Missing Authorization in MCP OAuth Bearer Token

The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to Privilege Escalation in version 3.4.9. This is due to missing WordPress capability enforcement in the MCP OAuth bearer-token authorization path, where any valid OAuth token causes...

Published

May 16, 2026

Patched Release

3.5.0

Affected Versions

3.4.9 through 3.4.9

Next Step

Update to 3.5.0 or newer if supported.

Review CVE-2026-8719 fixed version details Open CVE Reference

Plugin High Patched: Yes CVE-2026-23802

CVE-2026-23802: AI Engine – The Chatbot, AI Framework & MCP for WordPress <= 3.3.2 - Authenticated (Editor+) Arbitrary File Upload

The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 3.3.2. This makes it possible for authenticated attackers, with Editor-level access...

Published

Feb 25, 2026

Patched Release

3.3.3

Affected Versions

Versions up to 3.3.2

Next Step

Update to 3.3.3 or newer if supported.

Review CVE-2026-23802 fixed version details Open CVE Reference

Plugin High Patched: Yes CVE-2026-1400

CVE-2026-1400: AI Engine <= 3.3.2 - Authenticated (Editor+) Arbitrary File Upload via 'filename' Parameter in update_media_metadata Endpoint

The AI Engine – The Chatbot and AI Framework for WordPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the `rest_helpers_update_media_metadata` function in all versions up to, and including, 3.3.2. This makes it possible for...

Published

Jan 27, 2026

Patched Release

3.3.3

Affected Versions

Versions up to 3.3.2

Next Step

Update to 3.3.3 or newer if supported.

Review CVE-2026-1400 fixed version details Open CVE Reference

Plugin Medium Patched: Yes CVE-2026-0746

CVE-2026-0746: AI Engine <= 3.3.2 - Authenticated (Subscriber+) Server-Side Request Forgery

The AI Engine plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.3.2 via the 'get_audio' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to make web requests to arbitrary...

Published

Jan 27, 2026

Patched Release

3.3.3

Affected Versions

Versions up to 3.3.2

Next Step

Update to 3.3.3 or newer if supported.

Review CVE-2026-0746 fixed version details Open CVE Reference

Plugin Medium Patched: Yes CVE-2025-8084

CVE-2025-8084: AI Engine <= 3.1.8 - Authenticated (Editor+) Server-Side Request Forgery

The AI Engine plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.1.8 via the rest_helpers_create_images function. This makes it possible for authenticated attackers, with Editor-level access and above, to make web requests to...

Published

Nov 18, 2025

Patched Release

3.1.9

Affected Versions

Versions up to 3.1.8

Next Step

Update to 3.1.9 or newer if supported.

Review CVE-2025-8084 fixed version details Open CVE Reference

Plugin High Patched: Yes CVE-2025-12844

CVE-2025-12844: AI Engine <= 3.1.8 - Authenticated (Subscriber+) PHP Object Injection via PHAR Deserialization

The AI Engine plugin for WordPress is vulnerable to PHP Object Injection via PHAR Deserialization in all versions up to, and including, 3.1.8 via deserialization of untrusted input in the 'rest_simpleTranscribeAudio' and 'rest_simpleVisionQuery' functions. This makes it possible...

Published

Nov 12, 2025

Patched Release

3.1.9

Affected Versions

Versions up to 3.1.8

Next Step

Update to 3.1.9 or newer if supported.

Review CVE-2025-12844 fixed version details Open CVE Reference

Plugin Critical Patched: Yes CVE-2025-11749

CVE-2025-11749: AI Engine <= 3.1.3 - Unauthenticated Sensitive Information Exposure to Privilege Escalation

The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the /mcp/v1/ REST API endpoint that exposes the 'Bearer Token' value when 'No-Auth URL' is enabled. This makes it possible for unauthenticated attack...

Published

Nov 04, 2025

Patched Release

3.1.4

Affected Versions

Versions up to 3.1.3

Next Step

Update to 3.1.4 or newer if supported.

Review CVE-2025-11749 fixed version details Open CVE Reference

Plugin Medium Patched: Yes CVE-2025-8268

CVE-2025-8268: Ai Engine <= 2.9.5 - Missing Authorization to Unauthenticated Uploaded Files Disclosure And Deletion

The AI Engine plugin for WordPress is vulnerable to unauthorized access and loss of data due to a missing capability check on the rest_list and delete_files functions in all versions up to, and including, 2.9.5. This makes it possible for unauthenticated attackers to list and del...

Published

Sep 03, 2025

Patched Release

2.9.6

Affected Versions

Versions up to 2.9.5

Next Step

Update to 2.9.6 or newer if supported.

Review CVE-2025-8268 fixed version details Open CVE Reference

Plugin High Patched: Yes CVE-2025-7847

CVE-2025-7847: AI Engine 2.9.3 - 2.9.4 - Authenticated (Subscriber+) Arbitrary File Upload

The AI Engine plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the rest_simpleFileUpload() function in versions 2.9.3 and 2.9.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to uploa...

Published

Jul 30, 2025

Patched Release

2.9.5

Affected Versions

2.9.3 through 2.9.4

Next Step

Update to 2.9.5 or newer if supported.

Review CVE-2025-7847 fixed version details Open CVE Reference

Plugin Medium Patched: Yes CVE-2025-7780

CVE-2025-7780: AI Engine <= 2.9.4 - Missing URL Scheme Validation to Authenticated (Subscriber+) Arbitrary File Read via simpleTranscribeAudio and get_audio Functions

The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.4. The simpleTranscribeAudio endpoint fails to restrict URL schemes before calling get_audio(). This makes it possible for authenticated attackers, with Su...

Published

Jul 23, 2025

Patched Release

2.9.5

Affected Versions

Versions up to 2.9.4

Next Step

Update to 2.9.5 or newer if supported.

Review CVE-2025-7780 fixed version details Open CVE Reference

Plugin Medium Patched: Yes CVE-2025-5570

CVE-2025-5570: AI Engine <= 2.8.4 - Authenticated (Subscriber+) Stored Cross-Site Scripting via `mwai_chatbot` Shortcode `id` Parameter

The AI Engine plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the mwai_chatbot shortcode 'id' parameter in all versions up to, and including, 2.8.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers...

Published

Jul 07, 2025

Patched Release

2.8.5

Affected Versions

Versions up to 2.8.4

Next Step

Update to 2.8.5 or newer if supported.

Review CVE-2025-5570 fixed version details Open CVE Reference