Advisory No: TZCERT/SA/2024/04/12-1

Date of First Release: 12^th April 2024

Source: Wordfence, patchstack

Software Affected: AIKit <= 4.14.1

Overview:

CodeIsAwesome’s AIKit plugin is vulnerable to SQL Injection. The plugin’s vulnerability may allow an attacker to interact with the database and steal information.

Description:

AIKit is a WordPress AI Assistant that utilizes the GPT-3 model to assist writers in creating content up to 10 times faster. The plugin does not neutralize or incorrectly neutralize special elements that could modify the intended SQL command when it is sent to a downstream component. the improper neutralization of Special Elements used in an SQL Command in the plugin makes no real distinction between the control and data planes, thus, resulting in sensitive information disclosure as the impact SQL injection vulnerability.

Impact:

Successful exploitation of this vulnerability may allow the attacker to gain access to sensitive information.

Solution:

No patch has been released for this vulnerability. Users and administrators are encouraged to apply necessary updates.

References:

1. https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/aikit-wordpress-ai-writing-assistant-using-gpt3/aikit-4141-authenticated-contributor-sql-injection
2. https://patchstack.com/database/vulnerability/aikit-wordpress-ai-writing-assistant-using-gpt3/wordpress-codeisawesome-aikit-plugin-4-14-1-sql-injection-vulnerability?_s_id=cve
3. https://avd.aquasec.com/nvd/2024/cve-2024-31370/

IBM has released security updates to address vulnerabilities in its multiple products. Exploitation of these vulnerabilities may allow an attacker to take control of affected system.

Users and administrators are encouraged to review IBM Security Advisories dated 11^th April 2024 and apply necessary updates.

Ubuntu has released security updates to address vulnerabilities in Apache, NSS, squid and util-linux. Exploitation of these vulnerabilities may allow an attacker to take control of affected system.

Users and administrators are encouraged to review Ubuntu Security Advisories USN-6730-1, USN-6729-1, USN-6727-2, USN-6728-2 and USN-6719-2 and apply necessary updates.

SUSE has released security updates to address vulnerabilities in tomcat, texlive-specs-k, Linux kernel, less, Apache2-mod and xfig. Exploitation of these vulnerabilities may allow an attacker to take control of affected system.

Users and administrators are encouraged to review SUSE Security Advisories suse-su-20241205-1, suse-su-20241203-1, suse-su-20241239-1, suse-su-20241192-1, suse-su-20241198-1 and suse-su-20241196-1 and apply necessary updates.

Hewlett-Packard has released security updates to address vulnerabilities in HPE UCA, HPE OfficeConnect switches, HP PC BIOS, HPE FlexNetwork and FlexFabric Switches. Exploitation of these vulnerabilities may allow an attacker to take control of affected system.

Users and administrators are encouraged to review HP Security Advisories hpesbgn04598, hpesbnw04628, hpsbhf03924 and hpesbnw04625 and apply necessary updates.