Cyber Resilience

CVE-2024-12471

HighRCE

Published: 07 January 2025

Published
07 January 2025
Modified
15 April 2026
KEV Added
Patch
CVSS Score v3.1 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.6797 98.6th percentile
Risk Priority 58 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2024-12471 is a high-severity Code Injection (CWE-94) vulnerability in Wordpress (inferred from references). Its CVSS base score is 8.8 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Ingress Tool Transfer (T1105); ranked in the top 1.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

This vulnerability is AI-related — categorised as LLM Application Platforms; in the Supply Chain and Deployment risk domain.

The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and SI-10 (Information Input Validation).

Deeper analysis

The Post Saint plugin for WordPress, which integrates AI text and image generation features such as ChatGPT, DALL-E, and Stable Diffusion, is affected by CVE-2024-12471 in all versions through 1.3.1. The flaw is an arbitrary file upload vulnerability stemming from a missing capability check and absent file type validation in the add_image_to_library AJAX action, allowing unauthenticated file handling on the server.

Authenticated attackers with subscriber-level access or higher can exploit the issue over the network to upload arbitrary files, resulting in remote code execution on the affected WordPress site. The vulnerability carries a CVSS 3.1 score of 8.8, reflecting high impact on confidentiality, integrity, and availability without requiring user interaction.

Public references from Wordfence and the official WordPress plugin directory provide further details on the issue and its handling. The EPSS score stands at 0.6797 with no material increase from its peak, indicating steady but not sharply rising exploitation interest.

EU & UK References

Vulnerability details

The Post Saint: ChatGPT, GPT4, DALL-E, Stable Diffusion, Pexels, Dezgo AI Text & Image Generator plugin for WordPress is vulnerable to arbitrary files uploads due to a missing capability check and file type validation on the add_image_to_library AJAX action function…

more

in all versions up to, and including, 1.3.1. This makes it possible for authenticated attackers, with subscriber-level access and above, to upload arbitrary files that make remote code execution possible.

CWE(s)

AI Security AnalysisAI

AI Category
LLM Application Platforms
Risk Domain
Supply Chain and Deployment
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
Matched keywords: ai, chatgpt, dall-e, gpt4, stable diffusion

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1105 Ingress Tool Transfer Command And Control
Adversaries may transfer tools or other files from an external system into a compromised environment.
T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
T1505.003 Web Shell Persistence
Adversaries may backdoor web servers with web shells to establish persistent access to systems.
Why these techniques?

Arbitrary file upload vulnerability in public-facing WordPress plugin enables exploitation (T1190), ingress tool/malware transfer (T1105), and web shell deployment for RCE (T1505.003).

CVEs Like This One

CVE-2025-51414Shared CWE-94
CVE-2025-51482Shared CWE-94
CVE-2026-44717Shared CWE-94
CVE-2025-59528Shared CWE-94
CVE-2025-69902Shared CWE-94
CVE-2026-31040Shared CWE-94
CVE-2024-57487Shared CWE-94
CVE-2025-70995Shared CWE-94
CVE-2026-32367Shared CWE-94
CVE-2026-3352Shared CWE-94

Affected Assets

Wordpress
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Remediates the specific flaw in the plugin's add_image_to_library AJAX action by applying patches or updates beyond version 1.3.1 to restore proper capability checks and file validation.

prevent

Requires validation of file types and content for uploads via the vulnerable AJAX endpoint, directly countering the lack of file type validation that enables arbitrary file uploads.

prevent

Enforces approved authorizations on the add_image_to_library AJAX action, addressing the missing capability check that allows subscriber-level users to upload arbitrary files.

References