All 7 CVE vulnerabilities found in AI Engine, with AI-generated Chinese analysis, references, and POCs.
Vendor: Unknown
| CVE ID | Title | CVSS | Severity | Paused |
|---|---|---|---|---|
| CVE-2026-23802 | WordPress AI Engine plugin <= 3.3.2 - Arbitrary File Upload vulnerability CWE-434 | 8.3 | - | 2026-03-05 |
| CVE-2025-7847 | AI Engine 2.9.3 - 2.9.4 - Authenticated (Subscriber+) Arbitrary File Upload CWE-434 | 8.8 | High | 2025-07-31 |
| CVE-2025-6238 | AI Engine 2.8.4 - Insecure OAuth Implementation CWE-601 | 8.0 | High | 2025-07-04 |
| CVE-2025-5071 | AI Engine 2.8.0 - 2.8.3 - Authenticated (Subscriber+) Insufficient Authorization to Privilege Escalation via MCP CWE-863 | 8.8 | High | 2025-06-19 |
| CVE-2024-10499 | AI-Engine < 2.6.5 - Admin+ SQLi | 7.2 | - | 2024-12-12 |
| CVE-2024-6723 | AI Engine < 2.4.8 - Admin+ SQLi | 7.2AI | HighAI | 2024-09-13 |
| CVE-2024-6451 | AI Engine < 2.5.1 - Admin+ RCE | 8.8AI | HighAI | 2024-08-19 |
All 7 known CVE vulnerabilities affecting AI Engine with full Chinese analysis, references, and POCs where available.