CVE-2024-12471
Published: 07 January 2025
Summary
CVE-2024-12471 is a high-severity Code Injection (CWE-94) vulnerability in Wordpress (inferred from references). Its CVSS base score is 8.8 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Ingress Tool Transfer (T1105); ranked in the top 1.4% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
This vulnerability is AI-related — categorised as LLM Application Platforms; in the Supply Chain and Deployment risk domain.
The strongest mitigations our analysis identified are NIST 800-53 AC-3 (Access Enforcement) and SI-10 (Information Input Validation).
Deeper analysis
The Post Saint plugin for WordPress, which integrates AI text and image generation features such as ChatGPT, DALL-E, and Stable Diffusion, is affected by CVE-2024-12471 in all versions through 1.3.1. The flaw is an arbitrary file upload vulnerability stemming from a missing capability check and absent file type validation in the add_image_to_library AJAX action, allowing unauthenticated file handling on the server.
Authenticated attackers with subscriber-level access or higher can exploit the issue over the network to upload arbitrary files, resulting in remote code execution on the affected WordPress site. The vulnerability carries a CVSS 3.1 score of 8.8, reflecting high impact on confidentiality, integrity, and availability without requiring user interaction.
Public references from Wordfence and the official WordPress plugin directory provide further details on the issue and its handling. The EPSS score stands at 0.6797 with no material increase from its peak, indicating steady but not sharply rising exploitation interest.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2024-50883
Vulnerability details
The Post Saint: ChatGPT, GPT4, DALL-E, Stable Diffusion, Pexels, Dezgo AI Text & Image Generator plugin for WordPress is vulnerable to arbitrary files uploads due to a missing capability check and file type validation on the add_image_to_library AJAX action function…
more
in all versions up to, and including, 1.3.1. This makes it possible for authenticated attackers, with subscriber-level access and above, to upload arbitrary files that make remote code execution possible.
- CWE(s)
AI Security AnalysisAI
- AI Category
- LLM Application Platforms
- Risk Domain
- Supply Chain and Deployment
- OWASP Top 10 for LLMs 2025
- None mapped
- Classification Reason
- Matched keywords: ai, chatgpt, dall-e, gpt4, stable diffusion
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
Arbitrary file upload vulnerability in public-facing WordPress plugin enables exploitation (T1190), ingress tool/malware transfer (T1105), and web shell deployment for RCE (T1505.003).
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Remediates the specific flaw in the plugin's add_image_to_library AJAX action by applying patches or updates beyond version 1.3.1 to restore proper capability checks and file validation.
Requires validation of file types and content for uploads via the vulnerable AJAX endpoint, directly countering the lack of file type validation that enables arbitrary file uploads.
Enforces approved authorizations on the add_image_to_library AJAX action, addressing the missing capability check that allows subscriber-level users to upload arbitrary files.