Cyber Resilience

CVE-2025-0429

HighRCE

Published: 22 January 2025

Published
22 January 2025
Modified
24 January 2025
KEV Added
Patch
CVSS Score v3.1 7.2 CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.0036 58.4th percentile
Risk Priority 15 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2025-0429 is a high-severity Deserialization of Untrusted Data (CWE-502) vulnerability in Aipower Aipower. Its CVSS base score is 7.2 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Data from Local System (T1005); ranked in the top 41.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.

This vulnerability is AI-related — categorised as Other Platforms; in the Supply Chain and Deployment risk domain.

The strongest mitigations our analysis identified are NIST 800-53 RA-5 (Vulnerability Monitoring and Scanning) and SI-10 (Information Input Validation).

Deeper analysis

The vulnerability is a PHP Object Injection flaw in the AI Power: Complete AI Pack plugin for WordPress, affecting all versions through 1.8.96. It stems from unsafe deserialization of untrusted input supplied via the $form['post_content'] variable inside the wpaicg_export_ai_forms() function, which is tracked under CWE-502. The issue carries a CVSS 3.1 score of 7.2.

Authenticated attackers who possess administrative privileges can supply a crafted payload to inject a PHP object. Although the plugin itself contains no POP chain, the presence of an additional vulnerable plugin or theme on the same site could enable the attacker to delete arbitrary files, exfiltrate sensitive data, or achieve remote code execution.

A fix has been published in the WordPress plugin repository, as referenced in the linked changeset and Wordfence advisory.

The EPSS score rose from a low baseline to a peak of 0.0147 on 2025-12-11 before receding to the current value of 0.0036, indicating that exploitation interest increased after public disclosure.

EU & UK References

Vulnerability details

The "AI Power: Complete AI Pack" plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.8.96 via deserialization of untrusted input from the $form['post_content'] variable through the wpaicg_export_ai_forms() function. This allows authenticated attackers, with…

more

administrative privileges, to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.

CWE(s)

AI Security AnalysisAI

AI Category
Other Platforms
Risk Domain
Supply Chain and Deployment
OWASP Top 10 for LLMs 2025
None mapped
Classification Reason
Matched keywords: ai

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1005 Data from Local System Collection
Adversaries may search local system sources, such as file systems, configuration files, local databases, virtual machine files, or process memory, to find files of interest and sensitive data prior to Exfiltration.
T1059 Command and Scripting Interpreter Execution
Adversaries may abuse command and script interpreters to execute commands, scripts, or binaries.
T1070.004 File Deletion Stealth
Adversaries may delete files left behind by the actions of their intrusion activity.
Why these techniques?

PHP Object Injection via deserialization enables arbitrary code execution (T1059), sensitive data retrieval (T1005), and arbitrary file deletion (T1070.004) if a POP chain is provided by another plugin or theme.

CVEs Like This One

CVE-2025-0428Same product: Aipower Aipower
CVE-2024-13361Same product: Aipower Aipower
CVE-2026-33725Shared CWE-502
CVE-2026-29782Shared CWE-502
CVE-2026-42778Shared CWE-502
CVE-2025-68047Shared CWE-502
CVE-2026-22345Shared CWE-502
CVE-2024-28988Shared CWE-502
CVE-2026-47161Shared CWE-502
CVE-2024-9664Shared CWE-502

Affected Assets

aipower
aipower
≤ 1.8.97

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Requires validation of untrusted inputs like $form['post_content'] to prevent PHP object injection via unsafe deserialization in wpaicg_export_ai_forms().

prevent

Mandates timely remediation of flaws such as this PHP object injection vulnerability through patching, as documented in Wordfence and WordPress trac changeset 3224162.

detect

Enables vulnerability scanning and monitoring to identify PHP object injection flaws like CVE-2025-0429 in WordPress plugins before exploitation.

References