CVE-2026-1336 | Ays Pro AI ChatBot with ChatGPT and Content Generator Plugin store_data/get_chatgpt_api_key authorization

Inserito da Angelo Barbosa | Mar 2, 2026 | CVE

A vulnerability, which was classified as problematic, was found in Ays Pro AI ChatBot with ChatGPT and Content Generator Plugin up to 2.7.5/2.7.6 on WordPress. Affected by this vulnerability is the function store_data/get_chatgpt_api_key. Such manipulation leads to missing authorization.

This vulnerability is uniquely identified as CVE-2026-1336. The attack can be launched remotely. No exploit exists.

CVE-2026-1336 | Ays Pro AI ChatBot with ChatGPT and Content Generator Plugin store_data/get_chatgpt_api_key authorization

Post correlati

CVE-2024-0299 | Totolink N200RE 9.3.5u.6139_B20201216 /cgi-bin/cstecgi.cgi setTracerouteCfg command os command injection

CVE-2024-26022 | Intel UEFI Integrator Tools on Aptio V for Intel NUC access control (intel-sa-01172)

CVE-2023-32726 | Zabbix up to 5.0.39/6.0.23/6.4.8/7.0.0alpha7 DNS Response unusual condition

CVE-2025-4538 | kkFileView 4.4.0 /fileUpload File unrestricted upload