Cyber Resilience

CVE-2023-1650

CriticalPublic PoCRCE

Published: 08 May 2023

Published
08 May 2023
Modified
12 May 2025
KEV Added
Patch
CVSS Score v3.1 9.8 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.2603 96.4th percentile
Risk Priority 35 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2023-1650 is a critical-severity Deserialization of Untrusted Data (CWE-502) vulnerability in Quantumcloud Wpbot. Its CVSS base score is 9.8 (Critical).

Operationally, ranked in the top 3.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog; a public proof-of-concept is referenced.

This vulnerability is AI-related — categorised as Other AI Platforms.

Deeper analysis

The AI ChatBot WordPress plugin before version 4.4.7 is affected by a deserialization flaw (CWE-502) that processes untrusted user input supplied through cookies. An unauthenticated AJAX action directly invokes PHP unserialize on this cookie data, enabling PHP Object Injection whenever a usable gadget chain exists in the WordPress installation or its active plugins.

An attacker can therefore send a crafted cookie to the exposed AJAX endpoint and trigger arbitrary object instantiation and method invocation on the target site. Successful exploitation yields full control over the application context, allowing impacts such as remote code execution, data disclosure, or privilege escalation, consistent with the CVSS 9.8 rating that reflects network-accessible attack with no authentication or user interaction required.

The referenced WPScan advisory identifies the issue in versions prior to 4.4.7 and implies that updating to 4.4.7 or later removes the vulnerable code path. The associated EPSS score rose from a low baseline to a peak of 0.4881 (current value 0.2603), indicating increased exploitation interest after public disclosure.

EU & UK References

Vulnerability details

The AI ChatBot WordPress plugin before 4.4.7 unserializes user input from cookies via an AJAX action available to unauthenticated users, which could allow them to perform PHP Object Injection when a suitable gadget is present on the blog

CWE(s)

AI Security AnalysisAI

AI Category
Other AI Platforms
Risk Domain
N/A
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
Matched keywords: ai

Related Threats

Affected Assets

quantumcloud
wpbot
≤ 4.4.7

Mitigating Controls

Likely Mitigating Controls AI

Per-CVE control mapping for this CVE has not run yet; the list below is derived from the weakness types (CWEs) cited in the NVD entry.

addresses: CWE-502

Penetration testing supplies malicious serialized objects, detecting unsafe deserialization and supporting corrective actions.

addresses: CWE-502

Evaluation of untrusted data handling (deserialization testing) reveals unsafe processing, which the required remediation process addresses.

addresses: CWE-502

Untrusted serialized data can be deserialized and observed inside the chamber, blocking gadget-chain exploitation outside the sandbox.

addresses: CWE-502

Validates or rejects untrusted serialized data before deserialization occurs.

addresses: CWE-502

Identifies and blocks malicious code introduced through deserialization of untrusted data at system boundaries.

addresses: CWE-502

Integrity verification of serialized information can detect tampering before deserialization occurs.

addresses: CWE-502

Provenance of associated data allows detection of untrusted sources before deserialization or processing occurs.

References