AI Scribe WordPress Plugin Unauthorized Data Modification Vulnerability

A vulnerability exists in the AI Scribe WordPress plugin, specifically in versions through 2.3. The issue arises from a missing capability check in the engine_request_data() function, allowing authenticated attackers with Subscriber-level access or higher to unauthorizedly modify plugin settings. This vulnerability could be exploited to change settings that affect how the plugin operates or interacts with other content.

Impact

Exploitation of this vulnerability could lead to unauthorized changes in plugin settings, potentially allowing attackers to manipulate how the plugin generates or manages content.

Reproduction

To reproduce this vulnerability, an authenticated user with Subscriber-level access or higher can send a request to the 'admin-ajax.php' endpoint, targeting the 'al_scribe_engine_request_data' action. The request must include the necessary nonce for verification, but due to the missing capability check, it can be executed by users who should not have permission to modify the settings.

Remediation

Users are advised to update the AI Scribe WordPress plugin to version 2.5 or later, where this vulnerability has been addressed.