Where should operators start on this Plugin hub?

Start with the priority CVE quick links, then open the full report for affected versions, remediation notes, CVSS vectors, and source references.

Plugin Vulnerability Hub

Plugin 22 known issues Latest disclosed Feb 25, 2026

AI Engine – The Chatbot, AI Framework & MCP for WordPress Vulnerabilities

Q: Which AI Engine – The Chatbot, AI Framework & MCP for WordPress CVEs are tracked?

AI Engine – The Chatbot, AI Framework & MCP for WordPress tracked CVEs include CVE-2025-11749, CVE-2023-51409, CVE-2024-34440, CVE-2025-7847, and CVE-2025-5071.

Q: How many AI Engine – The Chatbot, AI Framework & MCP for WordPress vulnerabilities have patch guidance?

22 of 22 tracked AI Engine – The Chatbot, AI Framework & MCP for WordPress records include a published patch path.

Review known vulnerability records for the WordPress plugin AI Engine – The Chatbot, AI Framework & MCP for WordPress (`ai-engine`), including severity, CVE references, affected versions, and patch status.

Recent tracked CVEs on this page include CVE-2026-23802, CVE-2026-1400 and CVE-2026-0746, so operators can jump from disclosure to patch validation without scanning the full feed first.

View on WordPress.org Back to Feed

Known Records

High or Critical

Patch Coverage

100%

Last Updated

Mar 05, 2026

Priority CVE Quick Links

Fast paths into AI Engine – The Chatbot, AI Framework & MCP for WordPress CVE reports

Start with the highest-signal CVE records for this WordPress plugin before scanning the full vulnerability feed.

Indexed CVEs

CVE-2025-11749 Critical 3.1.4

CVE-2025-11749 AI Engine – The Chatbot, AI Framework & MCP for WordPress Sensitive Information Exposure

AI Engine <= 3.1.3 - Unauthenticated Sensitive Information Exposure to Privilege Escalation

CVE-2023-51409 Critical 1.9.99

CVE-2023-51409 AI Engine – The Chatbot, AI Framework & MCP for WordPress Remote Code Execution

AI Engine: ChatGPT Chatbot <= 1.9.98 - Unauthenticated Arbitrary File Upload via rest_upload

CVE-2024-34440 Critical 2.2.70

CVE-2024-34440 AI Engine – The Chatbot, AI Framework & MCP for WordPress Remote Code Execution

AI Engine: ChatGPT Chatbot <= 2.2.63 - Authenticated (Editor+) Arbitrary File Upload

CVE-2025-7847 High 2.9.5

CVE-2025-7847 AI Engine – The Chatbot, AI Framework & MCP for WordPress Remote Code Execution

AI Engine 2.9.3 - 2.9.4 - Authenticated (Subscriber+) Arbitrary File Upload

CVE-2025-5071 High 2.8.4

CVE-2025-5071 AI Engine – The Chatbot, AI Framework & MCP for WordPress Privilege Escalation

AI Engine 2.8.0 - 2.8.3 - Authenticated (Subscriber+) Insufficient Authorization to Privilege Escalation via MCP

CVE-2025-6238 High 2.8.5

CVE-2025-6238 AI Engine – The Chatbot, AI Framework & MCP for WordPress Vulnerability

AI Engine 2.8.4 - Insecure OAuth Implementation

CVE-2026-23802 High 3.3.3

CVE-2026-23802 AI Engine – The Chatbot, AI Framework & MCP for WordPress Remote Code Execution

AI Engine – The Chatbot, AI Framework & MCP for WordPress <= 3.3.2 - Authenticated (Editor+) Arbitrary File Upload

CVE-2026-1400 High 3.3.3

CVE-2026-1400 AI Engine – The Chatbot, AI Framework & MCP for WordPress Remote Code Execution

AI Engine <= 3.3.2 - Authenticated (Editor+) Arbitrary File Upload via 'filename' Parameter in update_media_metadata Endpoint

Coverage Snapshot

What this page helps you verify fast

This hub clusters every indexed record for AI Engine – The Chatbot, AI Framework & MCP for WordPress so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.

Patch Visibility

22 records include a published patch path, leaving 0 with no listed safe release yet.

Severity Mix

3 critical and 7 high severity findings.

Recent CVEs

CVE-2026-23802, CVE-2026-1400 and CVE-2026-0746

Reference Workflow

Jump from the hub into the full report when you need remediation notes, exploit context, CVSS vectors, or source references.

Triage First

Open the records most likely to drive action

These recent records surface the CVE strings, patch cues, and direct report links most operators need first.

CVE-2026-23802 High Patch path listed

CVE-2026-23802: AI Engine – The Chatbot, AI Framework & MCP for WordPress <= 3.3.2 - Authenticated (Editor+) Arbitrary File Upload

The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and incl...

Published

Feb 25, 2026

Patch Status

3.3.3

Open CVE-2026-23802 Report

CVE-2026-1400 High Patch path listed

CVE-2026-1400: AI Engine <= 3.3.2 - Authenticated (Editor+) Arbitrary File Upload via 'filename' Parameter in update_media_metadata Endpoint

The AI Engine – The Chatbot and AI Framework for WordPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the `rest_helpers_update_media_...

Published

Jan 27, 2026

Patch Status

3.3.3

Open CVE-2026-1400 Report

CVE-2026-0746 Medium Patch path listed

CVE-2026-0746: AI Engine <= 3.3.2 - Authenticated (Subscriber+) Server-Side Request Forgery

The AI Engine plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.3.2 via the 'get_audio' function. This makes it possible for authentic...

Published

Jan 27, 2026

Patch Status

3.3.3

Open CVE-2026-0746 Report

Known Vulnerabilities

Reports for AI Engine – The Chatbot, AI Framework & MCP for WordPress

Sorted by latest disclosure date so newly published issues surface first.

Plugin High Patched: Yes CVE-2026-23802

CVE-2026-23802: AI Engine – The Chatbot, AI Framework & MCP for WordPress <= 3.3.2 - Authenticated (Editor+) Arbitrary File Upload

The AI Engine – The Chatbot, AI Framework & MCP for WordPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in all versions up to, and including, 3.3.2. This makes it possible for authenticated attackers, with Editor-level access...

Published

Feb 25, 2026

Patched Release

3.3.3

Affected Versions

Versions up to 3.3.2

Next Step

Update to 3.3.3 or newer if supported.

Open CVE-2026-23802 Report Open CVE Reference

Plugin High Patched: Yes CVE-2026-1400

CVE-2026-1400: AI Engine <= 3.3.2 - Authenticated (Editor+) Arbitrary File Upload via 'filename' Parameter in update_media_metadata Endpoint

The AI Engine – The Chatbot and AI Framework for WordPress plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the `rest_helpers_update_media_metadata` function in all versions up to, and including, 3.3.2. This makes it possible for...

Published

Jan 27, 2026

Patched Release

3.3.3

Affected Versions

Versions up to 3.3.2

Next Step

Update to 3.3.3 or newer if supported.

Open CVE-2026-1400 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2026-0746

CVE-2026-0746: AI Engine <= 3.3.2 - Authenticated (Subscriber+) Server-Side Request Forgery

The AI Engine plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.3.2 via the 'get_audio' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to make web requests to arbitrary...

Published

Jan 27, 2026

Patched Release

3.3.3

Affected Versions

Versions up to 3.3.2

Next Step

Update to 3.3.3 or newer if supported.

Open CVE-2026-0746 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2025-8084

CVE-2025-8084: AI Engine <= 3.1.8 - Authenticated (Editor+) Server-Side Request Forgery

The AI Engine plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 3.1.8 via the rest_helpers_create_images function. This makes it possible for authenticated attackers, with Editor-level access and above, to make web requests to...

Published

Nov 18, 2025

Patched Release

3.1.9

Affected Versions

Versions up to 3.1.8

Next Step

Update to 3.1.9 or newer if supported.

Open CVE-2025-8084 Report Open CVE Reference

Plugin High Patched: Yes CVE-2025-12844

CVE-2025-12844: AI Engine <= 3.1.8 - Authenticated (Subscriber+) PHP Object Injection via PHAR Deserialization

The AI Engine plugin for WordPress is vulnerable to PHP Object Injection via PHAR Deserialization in all versions up to, and including, 3.1.8 via deserialization of untrusted input in the 'rest_simpleTranscribeAudio' and 'rest_simpleVisionQuery' functions. This makes it possible...

Published

Nov 12, 2025

Patched Release

3.1.9

Affected Versions

Versions up to 3.1.8

Next Step

Update to 3.1.9 or newer if supported.

Open CVE-2025-12844 Report Open CVE Reference

Plugin Critical Patched: Yes CVE-2025-11749

CVE-2025-11749: AI Engine <= 3.1.3 - Unauthenticated Sensitive Information Exposure to Privilege Escalation

The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the /mcp/v1/ REST API endpoint that exposes the 'Bearer Token' value when 'No-Auth URL' is enabled. This makes it possible for unauthenticated attack...

Published

Nov 04, 2025

Patched Release

3.1.4

Affected Versions

Versions up to 3.1.3

Next Step

Update to 3.1.4 or newer if supported.

Open CVE-2025-11749 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2025-8268

CVE-2025-8268: Ai Engine <= 2.9.5 - Missing Authorization to Unauthenticated Uploaded Files Disclosure And Deletion

The AI Engine plugin for WordPress is vulnerable to unauthorized access and loss of data due to a missing capability check on the rest_list and delete_files functions in all versions up to, and including, 2.9.5. This makes it possible for unauthenticated attackers to list and del...

Published

Sep 03, 2025

Patched Release

2.9.6

Affected Versions

Versions up to 2.9.5

Next Step

Update to 2.9.6 or newer if supported.

Open CVE-2025-8268 Report Open CVE Reference

Plugin High Patched: Yes CVE-2025-7847

CVE-2025-7847: AI Engine 2.9.3 - 2.9.4 - Authenticated (Subscriber+) Arbitrary File Upload

The AI Engine plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the rest_simpleFileUpload() function in versions 2.9.3 and 2.9.4. This makes it possible for authenticated attackers, with Subscriber-level access and above, to uploa...

Published

Jul 30, 2025

Patched Release

2.9.5

Affected Versions

2.9.3 through 2.9.4

Next Step

Update to 2.9.5 or newer if supported.

Open CVE-2025-7847 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2025-7780

CVE-2025-7780: AI Engine <= 2.9.4 - Missing URL Scheme Validation to Authenticated (Subscriber+) Arbitrary File Read via simpleTranscribeAudio and get_audio Functions

The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.4. The simpleTranscribeAudio endpoint fails to restrict URL schemes before calling get_audio(). This makes it possible for authenticated attackers, with Su...

Published

Jul 23, 2025

Patched Release

2.9.5

Affected Versions

Versions up to 2.9.4

Next Step

Update to 2.9.5 or newer if supported.

Open CVE-2025-7780 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2025-5570

CVE-2025-5570: AI Engine <= 2.8.4 - Authenticated (Subscriber+) Stored Cross-Site Scripting via `mwai_chatbot` Shortcode `id` Parameter

The AI Engine plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the mwai_chatbot shortcode 'id' parameter in all versions up to, and including, 2.8.4 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers...

Published

Jul 07, 2025

Patched Release

2.8.5

Affected Versions

Versions up to 2.8.4

Next Step

Update to 2.8.5 or newer if supported.

Open CVE-2025-5570 Report Open CVE Reference

Plugin High Patched: Yes CVE-2025-6238

CVE-2025-6238: AI Engine 2.8.4 - Insecure OAuth Implementation

The AI Engine plugin for WordPress is vulnerable to open redirect in version 2.8.4. This is due to an insecure OAuth implementation, as the 'redirect_uri' parameter is missing validation during the authorization flow. This makes it possible for unauthenticated attackers to interc...

Published

Jul 03, 2025

Patched Release

2.8.5

Affected Versions

2.8.4 through 2.8.4

Next Step

Update to 2.8.5 or newer if supported.

Open CVE-2025-6238 Report Open CVE Reference

Plugin High Patched: Yes CVE-2025-5071

CVE-2025-5071: AI Engine 2.8.0 - 2.8.3 - Authenticated (Subscriber+) Insufficient Authorization to Privilege Escalation via MCP

The AI Engine plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the 'Meow_MWAI_Labs_MCP::can_access_mcp' function in versions 2.8.0 to 2.8.3. This makes it possible for authenticated attackers, with subsc...

Published

Jun 18, 2025

Patched Release

2.8.4

Affected Versions

2.8.0 through 2.8.3

Next Step

Update to 2.8.4 or newer if supported.

Open CVE-2025-5071 Report Open CVE Reference