CVE-2025-11749

Name of the Vulnerable Software and Affected Versions AI Engine plugin for WordPress versions prior to 3.1.4 AI Engine versions 2.8.x and 2.9.x prior to 2.9.5

Description The AI Engine plugin for WordPress has a Sensitive Information Exposure issue via the /mcp/v1/ REST API endpoint. When the 'No-Auth URL' option is enabled, this endpoint exposes the 'Bearer Token' value. Successful exploitation allows unauthenticated attackers to obtain the bearer token, granting them access to a valid session and the ability to perform actions such as creating a new administrator account, leading to privilege escalation. The vulnerability affects versions up to and including 3.1.3. Prior builds also contained privilege-escalation issues, allowing low-level users to create new admin accounts or upload arbitrary PHP files via REST endpoints. The /mcp/v1/ API endpoint is involved in this exposure. The Bearer Token is the vulnerable parameter.

Recommendations Update the AI Engine plugin to version 3.1.4 or later. If using versions 2.8.x or 2.9.x, update to at least version 2.9.5. Rotate existing tokens and API keys, assuming they may be compromised. Audit user roles to ensure Subscribers and Contributors do not have upload or plugin modification permissions. Block .php execution in /wp-content/uploads/. Disable unused REST routes. Verify the integrity of existing backups and test restoration procedures.