ChatBot < 4.4.9 - Subscriber+ OpenAI Settings Update to Stored XSS

Vulnerability

The AI ChatBot WordPress plugin versions before 4.4.9 lack authorization and CSRF protection in the AJAX action responsible for updating OpenAI settings. This allows any authenticated user, including subscribers, to modify these settings. Additionally, the plugin fails to escape the settings values, enabling stored cross-site scripting (XSS) [1].

Exploitation

An attacker with subscriber-level access can send a crafted AJAX request to update the OpenAI settings with a malicious JavaScript payload. Because the AJAX action has no CSRF token, the attack can also be performed via cross-site request forgery if an administrator visits a malicious page while authenticated. The injected script is stored and executed when the settings are displayed [1].

Impact

Successful exploitation allows an attacker to inject arbitrary JavaScript into the plugin's settings page. This stored XSS can lead to session hijacking, defacement, or other malicious actions in the context of the victim's browser, potentially compromising the entire WordPress site [1].

Mitigation

The vulnerability is fixed in version 4.4.9 of the plugin. Users should update to this version immediately. No workarounds are available. The vulnerability is not listed in CISA's Known Exploited Vulnerabilities catalog [1].