CVE-2024-13714 – This vulnerability allows authenticated WordPre... (How to Fix)

Q: What is the severity of CVE-2024-13714?

CVE-2024-13714 has a CVSS score of 8.8 (HIGH). This vulnerability allows authenticated WordPress users with Subscriber-level access or higher to upload arbitrary files due to missing file type validation in the All-Images.ai plugin. Attackers can potentially achieve remote code execution by uploading malicious files to the server. All WordPress sites using vulnerable versions of this plugin are affected.

📋 TL;DR

This vulnerability allows authenticated WordPress users with Subscriber-level access or higher to upload arbitrary files due to missing file type validation in the All-Images.ai plugin. Attackers can potentially achieve remote code execution by uploading malicious files to the server. All WordPress sites using vulnerable versions of this plugin are affected.

💻 Affected Systems

Products:

All-Images.ai – IA Image Bank and Custom Image creation plugin for WordPress

Versions: All versions up to and including 1.0.4

Operating Systems: Any OS running WordPress

Default Config Vulnerable: ⚠️ Yes

Notes: Requires authenticated user with at least Subscriber role. WordPress multisite installations may be affected differently.

⚠️ Manual Verification Required

This CVE does not have specific version information in our database, so automatic vulnerability detection cannot determine if your system is affected.

Why? The CVE database entry doesn't specify which versions are vulnerable (no version ranges provided by the vendor/NVD).

🔒 Custom verification scripts are available for registered users. Sign up free to download automated test scripts.

Recommended Actions:

Review the CVE details at NVD
Check vendor security advisories for your specific version
Test if the vulnerability is exploitable in your environment
Consider updating to the latest version as a precaution

⚠️ Risk & Real-World Impact

🔴

Worst Case

Remote code execution leading to complete server compromise, data theft, malware deployment, or website defacement.

🟠

Likely Case

Unauthorized file upload leading to webshell installation, backdoor persistence, or limited server access.

🟢

If Mitigated

File upload attempts logged and blocked by web application firewall or file integrity monitoring.

🌐 Internet-Facing: HIGH

🏢 Internal Only: MEDIUM

🎯 Exploit Status

Public PoC: ✅ No

Weaponized: UNKNOWN

Unauthenticated Exploit: ✅ No

Complexity: MEDIUM

Requires attacker to have WordPress user account with Subscriber role or higher. File upload to remote code execution requires additional steps.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version after 1.0.4

Vendor Advisory: https://plugins.trac.wordpress.org/changeset?sfp_email=&sfph_mail=&reponame=&old=3231889%40all-images-ai&new=3231889%40all-images-ai&sfp_email=&sfph_mail=

Restart Required: No

Instructions:

1. Log into WordPress admin panel. 2. Navigate to Plugins → Installed Plugins. 3. Find All-Images.ai plugin. 4. Click 'Update Now' if available. 5. Alternatively, delete plugin and install latest version from WordPress repository.

🔧 Temporary Workarounds

Disable plugin

all

Temporarily deactivate the vulnerable plugin until patched

Restrict user registration

all

Disable new user registration to prevent attacker account creation

🧯 If You Can't Patch

Implement web application firewall rules to block suspicious file uploads
Enable file integrity monitoring on WordPress uploads directory

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin panel → Plugins → All-Images.ai version. If version is 1.0.4 or lower, you are vulnerable.

Check Version:

wp plugin list --name=all-images-ai --field=version

Verify Fix Applied:

Verify plugin version is higher than 1.0.4 in WordPress admin panel.

📡 Detection & Monitoring

Log Indicators:

Unusual file uploads to WordPress media directory
POST requests to /wp-admin/admin-ajax.php with action=all_images_ai_get_image_by_url
Uploads of non-image file types like .php, .exe, .sh

Network Indicators:

HTTP POST requests with file uploads to WordPress admin endpoints from non-admin users

SIEM Query:

source="web_server" AND (uri_path="/wp-admin/admin-ajax.php" AND post_data CONTAINS "all_images_ai_get_image_by_url")

📊 Metadata

CVE ID: CVE-2024-13714

CVSS v3 Score: 8.8 (HIGH)

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CWE: CWE-434

EPSS Score: 0.74% exploit probability (72.6th percentile)

Published: February 12, 2025

Last Updated: February 12, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2024-13714, you might also want to check these: