AI Chatbot with ChatGPT by AYS <= 2.0.9 – Unauthenticated OpenAI Key Disclosure | CVE 2024-7713 | Plugin Vulnerabilities

Description

The plugin discloses the Open AI API Key, allowing unauthenticated users to obtain it

Proof of Concept

Configure the OpenAI secret key within the plugin settings '/wp-admin/admin.php?page=ays-chatgpt-assistant&ays_tab=tab3'

Assuming a valid OpenAI Key has been configured and the chatbot is functional on the site. Send a message via the chatbot and: 

From version 2.0.8:
Intercept the ays_chatgpt_admin_ajax AJAX call, and base_64 decode the dataObj parameter to get the API Key

v < 2.0.8
Intercept the request to api.openai.com and extract the OpenAI secret key from the Authorization header.

Affects Plugins

ays-chatgpt-assistant

Fixed in 2.1.0

References

CVE

Classification

Type

SENSITIVE DATA DISCLOSURE

OWASP top 10

A3: Sensitive Data Exposure

CWE

CVSS

Miscellaneous

Original Researcher

Kieran Burge

Submitter

Kieran Burge

Submitter website

https://prisminfosec.com/

Verified

Yes

WPVDB ID

061eab97-4a84-4738-a1e8-ef9a1261ff73

Timeline

Publicly Published

2024-09-05 (about 1 year ago)

Added

2024-09-05 (about 1 year ago)

Last Updated

2024-09-05 (about 1 year ago)

Other

Published

Title

Published

2023-09-21

Title

DoLogin Security < 3.7.1 - Subscriber+ IP Address leak

Published

2024-06-06

Title

Widget Options - Extended <= 5.1.0 & Widget Options <= 4.0.1 - Authenticated (Subscriber+) Information Disclosure

Published

2025-04-04

Title

Ai Image Alt Text Generator for WP <= 1.1.9 - Subscriber+ Sensitive Information Exposure

Published

2024-05-07

Title

Barcode Scanner with Inventory & Order Manager < 1.5.5 - Unauthenticated Information Exposure

Published

2025-12-08

Title

AI CoPilot <= 1.2.7 - Authenticated (Contributor+) Sensitive Information Exposure