Vulnerabilities > Aipower > Medium

DATE CVE VULNERABILITY TITLE RISK
2025-01-22 CVE-2024-13360 Server-Side Request Forgery (SSRF) vulnerability in Aipower
The AI Power: Complete AI Pack plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.8.96 via the wpaicg_troubleshoot_add_vector().
network
low complexity
aipower CWE-918
5.4
5.4
2024-07-21 CVE-2024-37465 Unspecified vulnerability in Aipower
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Senol Sahin GPT3 AI Content Writer allows Stored XSS.This issue affects GPT3 AI Content Writer: from n/a through 1.8.66.
network
low complexity
aipower
5.4
5.4