CVE-2024-7714 | AYS AI ChatBot with ChatGPT and Content Generator Plugin access control

Posted by Angelo Barbosa | Sep 27, 2024 | CVE

A vulnerability was found in AYS AI ChatBot with ChatGPT and Content Generator Plugin up to 2.0.x on WordPress. It has been declared as critical. Affected by this vulnerability is the function AYS_chatgpt_disconnect/AYS_chatgpt_connect/AYS_chatgpt_save_feedback. The manipulation leads to improper access controls.

This vulnerability is known as CVE-2024-7714. The attack can be launched remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-7714 | AYS AI ChatBot with ChatGPT and Content Generator Plugin access control

Related Posts

CVE-2023-6272 | Theme My Login 2FA Plugin up to 1.1 on WordPress excessive authentication

CVE-2024-2944 | Campcodes Online Examination System 1.0 deleteCourseExe.php id sql injection

CVE-2024-3039 | Shanghai Brad Technology BladeX 3.4.0 API export-user sql injection

CVE-2023-50477 | NOS Client 0.6.6 getRPCEndpoint.js Privilege Escalation (Issue 1485)