CVE-2026-6804 in AI Copilot Plugininfo

Summary

by MITRE • 07/11/2026

The AI Chatbot & Workflow Automation by AIWU plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including, 1.4.12. This is due to the plugin not properly verifying that a user is authorized to perform an action. This makes it possible for unauthenticated attackers to publish draft WordPress posts, exposing unpublished content, or unpublish live content, causing service disruption, by supplying arbitrary scenario IDs.

Be aware that VulDB is the high quality source for vulnerability data.

Analysis

by VulDB Data Team • 07/11/2026

The AI Chatbot & Workflow Automation by AIWU plugin for WordPress presents a critical authorization bypass vulnerability that affects all versions up to and including 1.4.12. This flaw fundamentally undermines the security model of WordPress by allowing unauthenticated attackers to perform actions that should require proper authentication and authorization. The vulnerability stems from inadequate verification mechanisms within the plugin's codebase, specifically in how it handles user permissions for content management operations.

The technical implementation of this vulnerability occurs through the manipulation of scenario IDs, which are used as parameters in the plugin's workflow automation processes. When attackers supply arbitrary scenario IDs to specific endpoints, they can bypass the normal authentication checks that should validate user privileges before allowing content modification actions. This authorization bypass enables attackers to publish draft WordPress posts that should remain unpublished, or conversely, unpublish live content that is currently accessible to visitors. The flaw exists because the plugin fails to implement proper access control checks before executing sensitive operations.

The operational impact of this vulnerability extends beyond simple content exposure, creating potential service disruption scenarios that can severely affect website integrity and availability. When unauthorized users can publish draft content, they gain access to information that was intended for internal review or private distribution, potentially exposing sensitive business data, upcoming product releases, or confidential communications. The ability to unpublish live content creates additional risks including denial of service conditions where legitimate content becomes unavailable, disrupting normal website operations and potentially causing revenue loss for e-commerce sites.

This vulnerability aligns with CWE-863, which addresses "Incorrect Authorization" in software systems, specifically targeting the failure to properly verify user permissions before granting access to protected resources. The flaw also maps to ATT&CK technique T1078.004, "Valid Accounts: Cloud Accounts," as it allows attackers to leverage the plugin's functionality without requiring legitimate user credentials. Organizations running affected versions should immediately implement mitigations including disabling the plugin until a patch is available, implementing web application firewalls to monitor and block suspicious parameter manipulation attempts, and conducting thorough security audits of their WordPress installations.

The root cause analysis reveals that this authorization bypass represents a fundamental flaw in the plugin's access control implementation, where the system fails to properly validate user authentication status before executing content modification operations. This oversight creates a dangerous attack surface that allows attackers to manipulate workflow automation processes without proper authorization, effectively granting them administrative capabilities within the scope of the plugin's functionality. Security teams should prioritize patching this vulnerability as it represents an immediate threat to WordPress site integrity and content confidentiality.

Mitigation strategies should include immediate implementation of rate limiting and parameter validation controls to prevent arbitrary scenario ID manipulation attempts, along with comprehensive monitoring of workflow automation endpoints for suspicious activity patterns. Organizations should also consider implementing additional authentication layers and access control measures specifically targeting the plugin's functionality until official patches are deployed to address the underlying authorization bypass flaw in all affected versions.

Responsible

Wordfence

Reservation

04/21/2026

Disclosure

07/11/2026

Moderation

accepted

CPE

ready

EPSS

0.00000

KEV

no

Activities

low

Sources

Want to stay up to date on a daily basis?

Enable the mail alert feature now!