WordPress Plugin Vulnerabilities

AI ChatBot < 4.9.1 and 4.9.2 - Authenticated (Subscriber+) Directory Traversal to Arbitrary File Write via qcld_openai_upload_pagetraining_file

Description

The AI ChatBot for WordPress is vulnerable to Directory Traversal in versions up to, and including, 4.8.9 as well as 4.9.2 via the qcld_openai_upload_pagetraining_file function. This allows subscriber-level attackers to append "<?php" to any existing file on the server resulting in potential DoS when appended to critical files such as wp-config.php.

Affects Plugins

Plugin icon
chatbot
Fixed in 4.9.1

References

CVE
CVE-2023-5241
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/25199281-5286-4d75-8d27-26ce215e0993

Classification

Type
LFI
OWASP top 10
A1: Injection
CWE
CWE-22
CVSS
9.6 (critical)

Miscellaneous

Original Researcher
Marco Wotschka
Verified
No
WPVDB ID
b8341a4d-4473-41f6-9819-d06e0f78da41

Timeline

Publicly Published
2023-10-11 (about 2 years ago)
Added
2023-11-23 (about 2 years ago)
Last Updated
2024-01-10 (about 2 years ago)

Other

Published
Title
Published
2026-03-20
Title
Keep Backup Daily < 2.1.3 - Authenticated (Admin+) Limited Path Traversal via 'kbd_path' Parameter
Published
2024-05-21
Title
WPZOOM Addons for Elementor (Templates, Widgets) < 1.1.38 - Unauthenticated Local File Inclusion
Published
2025-01-30
Title
MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution < 4.2.15 - Unauthenticated Limited Local File Inclusion
Published
2014-08-01
Title
Google Document Embedder 2.4.6 - pdf.php file Parameter Arbitrary File Disclosure
Published
2026-02-25
Title
Worry Proof Backup <= 0.2.4 - Authenticated (Subscriber+) Path Traversal via Backup Upload