Sensitive Information Exposure in AYS Pro AI ChatBot by AYS
CVE-2025-62039

7.5HIGH

Key Information:

Vendor: WordPress
Status: Ai Chatbot With Chatgpt And Content Generator By Ays
Vendor: CVE Published:; 6 November 2025

What is CVE-2025-62039?

A vulnerability in the AI ChatBot with ChatGPT and Content Generator by AYS allows for the insertion of sensitive information into sent data. This flaw can potentially expose embedded sensitive data during chat interactions, leading to unauthorized access. The affected versions are up to and including 2.6.6, presenting a risk to users reliant on this plugin for secure communication.

Affected Version(s)

AI ChatBot with ChatGPT and Content Generator by AYS <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Plugin/ays-...

vdb-entry

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 6, 2025
Vulnerability Reserved
Oct 7, 2025

Credit

n0_arafat_n0 | Patchstack Bug Bounty Program

JSON

WordPress

What is CVE-2025-62039?

Affected Version(s)

References

CVSS V3.1

Timeline

Credit