WordPress sites using the AI Engine plugin should be aware of a recently discovered security vulnerability that could allow malicious actors to upload arbitrary files and potentially take control of affected websites.
On July 18th, 2025, a security report submitted to Wordfence revealed an Arbitrary File Upload vulnerability in the AI Engine plugin, which is installed on over 100,000 WordPress sites. This flaw affects versions 2.9.3 and 2.9.4 and can be exploited by authenticated users—specifically those with Subscriber-level access or higher—to upload malicious files to the server. If successfully exploited, this could lead to remote code execution, giving attackers the ability to fully compromise the website.
This flaw is only present if the “Public API” feature is enabled in the plugin settings, which by default is disabled, and also requires no additional authentication mechanisms (like a Bearer Token) configured to protect the API.
The vulnerability is within missing validation checks in the plugin’s file upload functions. Specifically, the plugin’s code allows authenticated users to upload files without verifying their type or extension properly. Since the uploaded files are stored in the WordPress uploads directory—which is publicly accessible—attackers could upload malicious PHP scripts and then execute them via web requests, effectively gaining control over the site. The patched version now properly validates files before they’re uploaded, preventing malicious scripts from being accepted.
Update Now
All website administrators using the AI Engine plugin should update to version 2.9.5 immediately. This update patches the security flaw and prevents potential exploits.
This incident highlights the importance of keeping plugins up to date and monitoring for security advisories. Wordfence demonstrates how collaboration with security researchers can help quickly identify and resolve vulnerabilities and strengthen the overall security of the WordPress ecosystem.
For more details and an in-depth analysis of the findings, visit Wordfence’s blog post here.
Leave a Reply