CVE-2025-11749

CRITICAL

CVSS v3

9.8

CRITICAL

EPSS Score

85.4%

exploit probability

CISA KEV

No

known exploited

Exploitation

SSVC status

Description

The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the /mcp/v1/ REST API endpoint that exposes the 'Bearer Token' value when 'No-Auth URL' is enabled. This makes it possible for unauthenticated attackers to extract the bearer token, which can be used to gain access to a valid session and perform many actions like creating a new administrator account, leading to privilege escalation.

Technical Details

Published
11/5/2025

Frequently Asked Questions

What is CVE-2025-11749?

The AI Engine plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.1.3 via the /mcp/v1/ REST API endpoint that exposes the 'Bearer Token' value when 'No-Auth URL' is enabled. This makes it possible for unauthenticated attackers to extract the bearer token, which can be used to gain access to a valid session and perform many actions like creating a new administrator account, leading to privilege escalation.

Is CVE-2025-11749 actively exploited?

Active exploitation of CVE-2025-11749 has not been confirmed. The EPSS score is 85.4%, indicating the estimated probability of exploitation in the next 30 days.

What is the CVSS score for CVE-2025-11749?

CVE-2025-11749 has a CVSS v3 base score of 9.8 (CRITICAL severity).

Is CVE-2025-11749 affecting your environment?

Use isMalicious to check if any of your IPs or domains are associated with this vulnerability's IOCs.