First published: Thu Aug 01 2024(Updated: )
Server-Side Request Forgery (SSRF) vulnerability in Jordy Meow AI Engine: ChatGPT Chatbot allows Server Side Request Forgery.This issue affects AI Engine: ChatGPT Chatbot: from n/a through 2.4.7.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
Jordy Meow AI Engine | <=2.4.7 | |
WordPress AI Engine | <=2.4.7 |
Update to 2.4.8 or a higher version.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2024-38791 is classified as a Server-Side Request Forgery (SSRF) vulnerability, which can lead to significant security risks.
To fix CVE-2024-38791, update the AI Engine: ChatGPT Chatbot or WordPress AI ENGINE plugin to versions greater than 2.4.7.
CVE-2024-38791 affects Jordy Meow AI Engine: ChatGPT Chatbot versions from n/a through 2.4.7 and WordPress AI ENGINE plugin versions from n/a through 2.4.7.
The impact of CVE-2024-38791 includes potential unauthorized access to internal resources via SSRF exploits.
Yes, a patch is available in later versions of the software following 2.4.7 for CVE-2024-38791.