TaxoPress WordPress Plugin Missing Authorization Vulnerability Allows Unauthorized Taxonomy Modification

A vulnerability exists in the Tag, Category, and Taxonomy Manager – AI Autotagger with OpenAI plugin for WordPress, in all versions through 3.41.0. The issue arises from a missing capability check in the 'taxopress_ai_add_post_term' function, which allows authenticated attackers with Contributor-level access and above to arbitrarily add or remove taxonomy terms, such as tags and categories, on any post, including those they do not own.

Impact

Exploitation of this vulnerability could lead to unauthorized modification of taxonomy terms on posts, potentially disrupting content organization and management.

Reproduction

To reproduce this vulnerability, an authenticated user with Contributor-level access or higher can send a request to the 'taxopress_ai_add_post_term' function without the necessary capability check. This can be done by bypassing the authorization controls that are supposed to prevent such actions.

Remediation

Users are advised to update the TaxoPress WordPress plugin to version 3.42.0 or later.