CVE-2025-0429
Published: 22 January 2025
Summary
CVE-2025-0429 is a high-severity Deserialization of Untrusted Data (CWE-502) vulnerability in Aipower Aipower. Its CVSS base score is 7.2 (High).
Operationally, exploitation aligns with the MITRE ATT&CK technique Data from Local System (T1005); ranked in the top 41.6% of CVEs by exploit likelihood; it is not currently listed in the CISA KEV catalog.
This vulnerability is AI-related — categorised as Other Platforms; in the Supply Chain and Deployment risk domain.
The strongest mitigations our analysis identified are NIST 800-53 RA-5 (Vulnerability Monitoring and Scanning) and SI-10 (Information Input Validation).
Deeper analysis
The vulnerability is a PHP Object Injection flaw in the AI Power: Complete AI Pack plugin for WordPress, affecting all versions through 1.8.96. It stems from unsafe deserialization of untrusted input supplied via the $form['post_content'] variable inside the wpaicg_export_ai_forms() function, which is tracked under CWE-502. The issue carries a CVSS 3.1 score of 7.2.
Authenticated attackers who possess administrative privileges can supply a crafted payload to inject a PHP object. Although the plugin itself contains no POP chain, the presence of an additional vulnerable plugin or theme on the same site could enable the attacker to delete arbitrary files, exfiltrate sensitive data, or achieve remote code execution.
A fix has been published in the WordPress plugin repository, as referenced in the linked changeset and Wordfence advisory.
The EPSS score rose from a low baseline to a peak of 0.0147 on 2025-12-11 before receding to the current value of 0.0036, indicating that exploitation interest increased after public disclosure.
EU & UK References
- 🇪🇺 ENISA EUVD: EUVD-2025-1663
Vulnerability details
The "AI Power: Complete AI Pack" plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.8.96 via deserialization of untrusted input from the $form['post_content'] variable through the wpaicg_export_ai_forms() function. This allows authenticated attackers, with…
more
administrative privileges, to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.
- CWE(s)
AI Security AnalysisAI
- AI Category
- Other Platforms
- Risk Domain
- Supply Chain and Deployment
- OWASP Top 10 for LLMs 2025
- None mapped
- Classification Reason
- Matched keywords: ai
Related Threats
MITRE ATT&CK Enterprise TechniquesAI
Why these techniques?
PHP Object Injection via deserialization enables arbitrary code execution (T1059), sensitive data retrieval (T1005), and arbitrary file deletion (T1070.004) if a POP chain is provided by another plugin or theme.
CVEs Like This One
Affected Assets
Mitigating Controls
Mitigating Controls (NIST 800-53 r5) AI
Requires validation of untrusted inputs like $form['post_content'] to prevent PHP object injection via unsafe deserialization in wpaicg_export_ai_forms().
Mandates timely remediation of flaws such as this PHP object injection vulnerability through patching, as documented in Wordfence and WordPress trac changeset 3224162.
Enables vulnerability scanning and monitoring to identify PHP object injection flaws like CVE-2025-0429 in WordPress plugins before exploitation.