CVE-2025-13381 – AI ChatBot with ChatGPT and Content Generator by AYS

CVE ID : CVE-2025-13381

Published : Nov. 27, 2025, 9:27 a.m. | 56 minutes ago

Description : The AI ChatBot with ChatGPT and Content Generator by AYS plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the ‘ays_chatgpt_save_wp_media’ function in all versions up to, and including, 2.7.0. This makes it possible for unauthenticated attackers to upload media files.

Severity: 0.0 | NA

Visit the link for more details, such as CVSS details, affected products, timeline, and more…