AI Power: Complete AI Pack WordPress Plugin Server-Side Request Forgery Vulnerability

A Server-Side Request Forgery (SSRF) vulnerability has been identified in the AI Power: Complete AI Pack plugin for WordPress, affecting all versions through 1.8.96. The vulnerability arises in the 'wpaicg_troubleshoot_add_vector' function, allowing authenticated attackers with subscriber-level access or higher to send web requests to arbitrary locations from the web application. This could be exploited to query and modify information from internal services.

Impact

Exploitation of this vulnerability allows for Server-Side Request Forgery, where an attacker can make requests from the server to internal services or external systems, potentially leading to unauthorized data access or modification.

Reproduction

To reproduce this vulnerability, an authenticated user with subscriber-level access or higher can use the 'wpaicg_troubleshoot_add_vector' function. This can be done by sending a request that includes the necessary nonce for verification, along with the data that triggers the vector addition. The request will be processed by the server, which can then be manipulated to access internal services or modify data.

Remediation

Users are advised to update the AI Power: Complete AI Pack plugin to version 1.8.97 or later, where this vulnerability has been patched.