CVE-2023-1650
Published: 08 May 2023
Summary
CVE-2023-1650 is a critical-severity Deserialization of Untrusted Data (CWE-502) vulnerability in Quantumcloud Wpbot. Its CVSS base score is 9.8 (Critical).
Operationally, ranked in the top 3.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.
This vulnerability is AI-related — categorised as Other AI Platforms.
Deeper analysis
The AI ChatBot WordPress plugin before version 4.4.7 is affected by a deserialization flaw (CWE-502) that processes untrusted user input supplied through cookies. An unauthenticated AJAX action directly invokes PHP unserialize on this cookie data, enabling PHP Object Injection whenever a usable gadget chain exists in the WordPress installation or its active plugins.
An attacker can therefore send a crafted cookie to the exposed AJAX endpoint and trigger arbitrary object instantiation and method invocation on the target site. Successful exploitation yields full control over the application context, allowing impacts such as remote code execution, data disclosure, or privilege escalation, consistent with the CVSS 9.8 rating that reflects network-accessible attack with no authentication or user interaction required.
The referenced WPScan advisory identifies the issue in versions prior to 4.4.7 and implies that updating to 4.4.7 or later removes the vulnerable code path. The associated EPSS score rose from a low baseline to a peak of 0.4881 (current value 0.2603), indicating increased exploitation interest after public disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2023-23879
Vulnerability details
The AI ChatBot WordPress plugin before 4.4.7 unserializes user input from cookies via an AJAX action available to unauthenticated users, which could allow them to perform PHP Object Injection when a suitable gadget is present on the blog
- CWE(s)
AI Security AnalysisAI
- AI Category
- Other AI Platforms
- Risk Domain
- N/A
- OWASP Top 10 for LLMs 2025
- None mapped
- Classification Reason
- Matched keywords: ai
Related Threats
Affected Assets
Mitigating Controls
Likely Mitigating Controls AI
Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.
Penetration testing supplies malicious serialized objects, detecting unsafe deserialization and supporting corrective actions.
Evaluation of untrusted data handling (deserialization testing) reveals unsafe processing, which the required remediation process addresses.
Untrusted serialized data can be deserialized and observed inside the chamber, blocking gadget-chain exploitation outside the sandbox.
Validates or rejects untrusted serialized data before deserialization occurs.
Identifies and blocks malicious code introduced through deserialization of untrusted data at system boundaries.
Integrity verification of serialized information can detect tampering before deserialization occurs.
Provenance of associated data allows detection of untrusted sources before deserialization or processing occurs.