Browse all 3 CVE security advisories affecting AIpost. AI-powered Chinese analysis, POCs, and references for each vulnerability.
AIpost develops AI-powered content management systems for enterprise clients. Historically, the platform has been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and misconfigured access controls. The three publicly disclosed CVEs highlight these recurring issues, with one incident allowing unauthorized administrative access. Security assessments indicate inconsistent patch management and inadequate API protection, though no major data breaches have been confirmed. The platform's integration with third-party services introduces additional attack surfaces, particularly in authentication mechanisms. Organizations implementing AIpost should prioritize regular security audits and network segmentation to mitigate identified risks.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-22297 | WordPress AI WP Writer plugin <= 3.8.4.4 - Cross Site Request Forgery (CSRF) vulnerability — AI WP WriterCWE-352 | 4.3 | Medium | 2025-01-07 |
| CVE-2024-54307 | WordPress AIcomments plugin <= 1.4.1 - Cross Site Request Forgery (CSRF) vulnerability — AIcommentsCWE-352 | 4.3 | Medium | 2024-12-13 |
| CVE-2024-30459 | WordPress AI WP Writer plugin <= 3.6.5 - Broken Access Control vulnerability — AI WP WriterCWE-862 | 5.3 | Medium | 2024-05-08 |
This page lists every published CVE security advisory associated with AIpost. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.