CVE-2025-0428: CWE-502 Deserialization of Untrusted Data in senols AI Puffer – Your AI engine for WordPress (formerly AI Power)
The "AI Power: Complete AI Pack" plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.8.96 via deserialization of untrusted input from the $form['post_content'] variable through the wpaicg_export_prompts function. This allows authenticated attackers, with administrative privileges, to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.
AI Analysis
Technical Summary
The vulnerability in AI Puffer (formerly AI Power) WordPress plugin arises from unsafe deserialization of untrusted input in the wpaicg_export_prompts function, specifically from the $form['post_content'] variable. This PHP Object Injection flaw allows authenticated administrators to inject malicious PHP objects. Although the plugin does not contain a gadget chain for exploitation, if other installed plugins or themes provide one, attackers could leverage this to perform destructive or unauthorized actions such as deleting files, accessing sensitive information, or executing arbitrary code.
Potential Impact
Successful exploitation can lead to full compromise of the affected WordPress site, including confidentiality, integrity, and availability impacts. Specifically, attackers with admin privileges can inject PHP objects that, combined with gadget chains from other components, may result in arbitrary code execution, data theft, or file deletion. The CVSS score of 7.2 reflects the high impact and network attack vector with low attack complexity but requiring high privileges and no user interaction.
Mitigation Recommendations
No official patch or fix is currently documented in the provided data. Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a fix is available, restrict administrative access to trusted users only and consider disabling or removing the vulnerable plugin. Review other installed plugins and themes for potential gadget chains that could be exploited in conjunction with this vulnerability.
CVE-2025-0428: CWE-502 Deserialization of Untrusted Data in senols AI Puffer – Your AI engine for WordPress (formerly AI Power)
Description
The "AI Power: Complete AI Pack" plugin for WordPress is vulnerable to PHP Object Injection in versions up to, and including, 1.8.96 via deserialization of untrusted input from the $form['post_content'] variable through the wpaicg_export_prompts function. This allows authenticated attackers, with administrative privileges, to inject a PHP Object. No POP chain is present in the vulnerable plugin. If a POP chain is present via an additional plugin or theme installed on the target system, it could allow the attacker to delete arbitrary files, retrieve sensitive data, or execute code.
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
The vulnerability in AI Puffer (formerly AI Power) WordPress plugin arises from unsafe deserialization of untrusted input in the wpaicg_export_prompts function, specifically from the $form['post_content'] variable. This PHP Object Injection flaw allows authenticated administrators to inject malicious PHP objects. Although the plugin does not contain a gadget chain for exploitation, if other installed plugins or themes provide one, attackers could leverage this to perform destructive or unauthorized actions such as deleting files, accessing sensitive information, or executing arbitrary code.
Potential Impact
Successful exploitation can lead to full compromise of the affected WordPress site, including confidentiality, integrity, and availability impacts. Specifically, attackers with admin privileges can inject PHP objects that, combined with gadget chains from other components, may result in arbitrary code execution, data theft, or file deletion. The CVSS score of 7.2 reflects the high impact and network attack vector with low attack complexity but requiring high privileges and no user interaction.
Mitigation Recommendations
No official patch or fix is currently documented in the provided data. Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a fix is available, restrict administrative access to trusted users only and consider disabling or removing the vulnerable plugin. Review other installed plugins and themes for potential gadget chains that could be exploited in conjunction with this vulnerability.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- Wordfence
- Date Reserved
- 2025-01-13T16:54:57.091Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 699f6b69b7ef31ef0b555267
Added to database: 2/25/2026, 9:36:41 PM
Last enriched: 4/9/2026, 3:40:37 PM
Last updated: 4/12/2026, 5:31:32 PM
Views: 33
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.