Every CVE whose affected-product data names Meowapps Ai Engine, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (13)
CVE-2023-51409 — CVSS 10.0 (critical): Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This issue affects AI Engine…
CVE-2024-29100 — CVSS 9.1 (critical): Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This issue affects AI Engine…
CVE-2024-34440 — CVSS 9.1 (critical): Unrestricted Upload of File with Dangerous Type vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This issue affects AI Engine…
CVE-2025-5071 — CVSS 8.8 (high): The AI Engine plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on…
CVE-2025-6238 — CVSS 8.0 (high): The AI Engine plugin for WordPress is vulnerable to open redirect in version 2.8.4. This is due to an insecure OAuth implementation, as the…
CVE-2024-10499 — CVSS 7.2 (high): The AI Engine WordPress plugin before 2.6.5 does not sanitize and escape a parameter from one of its RESP API endpoint before using it in a…
CVE-2024-6451 — CVSS 7.2 (high): AI Engine < 2.4.3 is susceptible to remote-code-execution (RCE) via Log Poisoning. The AI Engine WordPress plugin before 2.5.1 fails to…
CVE-2024-29090 — CVSS 6.8 (medium): Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot.This issue affects AI Engine: ChatGPT Chatbot…
CVE-2024-0699 — CVSS 6.6 (medium): The AI Engine: Chatbots, Generators, Assistants, GPT 4 and more! plugin for WordPress is vulnerable to arbitrary file uploads due to…
CVE-2025-5570 — CVSS 5.4 (medium): The AI Engine plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the mwai_chatbot shortcode 'id' parameter in all…
CVE-2024-38791 — CVSS 4.9 (medium): Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot allows Server Side Request Forgery.This issue…
CVE-2023-2580 — CVSS 4.8 (medium): The AI Engine WordPress plugin before 1.6.83 does not sanitize and escape some of its settings, which could allow high-privilege users such…
CVE-2024-6723 — CVSS 4.7 (medium): The AI Engine WordPress plugin before 2.4.8 does not properly sanitise and escape a parameter before using it in a SQL statement, leading…