CVE-2026-25348

Download Alt Text AI <= 1.10.15 - Missing Authorization

mediumMissing Authorization

5.3

CVSS Score

5.3

CVSS Score

medium

Severity

1.10.18

Patched in

11d

Time to patch

Description

The Download Alt Text AI plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in versions up to, and including, 1.10.15. This makes it possible for unauthenticated attackers to perform an unauthorized action.

CVSS Vector Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

None

Confidentiality

Low

Integrity

None

Availability

Technical Details

Affected versions<=1.10.15

PublishedFebruary 14, 2026

Last updatedFebruary 24, 2026

Affected pluginalttext-ai

Source Code

WordPress.org SVN

Vulnerable v1.10.15

Browse source Download .zip

Patched v1.10.18

Browse source Download .zip

Research Plan

Unverified

# Exploitation Research Plan - CVE-2026-25348 (Alt Text AI) ## 1. Vulnerability Summary The **Alt Text AI** plugin (slug: `alttext-ai`) for WordPress is vulnerable to **Missing Authorization** in versions up to and including 1.10.15. The vulnerability resides in an AJAX handler that fails to implem…

Show full research plan

Exploitation Research Plan - CVE-2026-25348 (Alt Text AI)

1. Vulnerability Summary

The Alt Text AI plugin (slug: alttext-ai) for WordPress is vulnerable to Missing Authorization in versions up to and including 1.10.15. The vulnerability resides in an AJAX handler that fails to implement capability checks (current_user_can()), allowing unauthenticated attackers to trigger sensitive plugin actions. Based on the CVSS vector (Integrity: Low), the vulnerability likely allows modifying non-critical plugin settings (such as the API key or sync options) or triggering the alt-text generation process for images, which could exhaust API credits.

2. Attack Vector Analysis

Endpoint: /wp-admin/admin-ajax.php
Vulnerable Action (Inferred): alttext_ai_save_options or alt_text_ai_update_settings
HTTP Method: POST
Payload Parameter: action, alttext_ai_api_key (or similar settings array), and potentially a nonce.
Authentication: None (Unauthenticated).
Preconditions: The plugin must be active.

3. Code Flow

Entry Point: An AJAX request is sent to admin-ajax.php with an action string (e.g., alttext_ai_save_options).
Hook Registration: The plugin registers this action via add_action('wp_ajax_nopriv_alttext_ai_save_options', ...) or fails to check login status within a common handler.
Vulnerable Function: The handler function (e.g., alttext_ai_save_options_callback) is executed.
Missing Check: The function checks if specific $_POST variables are set but omits if ( ! current_user_can( 'manage_options' ) ) { wp_die(); }.
Sink: The function calls update_option( 'alttext_ai_options', ... ) with user-supplied data.

4. Nonce Acquisition Strategy

If the handler implements a nonce check using check_ajax_referer but lacks a capability check, the nonce must be retrieved. In alttext-ai, nonces are typically localized for admin screens.

Script Handle: alttext-ai-admin or alttext-ai-common (inferred).
Localization Variable: alttext_ai_obj or alttext_ai_data (inferred).
Nonce Key: nonce or alttext_ai_nonce (inferred).

Strategy:

Since unauthenticated users cannot usually access the admin dashboard to see the localized script, check if the plugin enqueues these scripts on the frontend (e.g., if a "request alt text" button is available on public pages).
If the plugin uses a generic nonce or no nonce at all (common in Missing Authorization cases), the request can be sent directly.
Note: If the action is registered via wp_ajax_nopriv_, the developer often forgets the nonce check entirely or uses a very weak one.

5. Exploitation Strategy

We will attempt to overwrite the plugin's API key, which is a common "Integrity: Low" impact.

Step 1: Test for Nonce-less Execution
Send a POST request to update the API key without a nonce.

URL: http://localhost:8080/wp-admin/admin-ajax.php
Method: POST
Headers: Content-Type: application/x-www-form-urlencoded

Body:

action=alttext_ai_save_options&alttext_ai_api_key=EXPLOIT_SUCCESSFUL_KEY

Step 2: Alternate Action (Trigger Sync)
If settings update fails, attempt to trigger an image sync which consumes resources.

Body:
```
action=alttext_ai_sync_images
```

6. Test Data Setup

Install and activate Alt Text AI version 1.10.15.
Navigate to Settings > Alt Text AI and set a dummy API key (e.g., ORIGINAL_KEY_123).
Ensure at least one image exists in the Media Library to provide a target for sync actions.

7. Expected Results

HTTP Response: 200 OK or a JSON response like {"success":true}.
Effect: The WordPress option alttext_ai_options (or similar) will be updated in the database, or the plugin will attempt to connect to an external AI service using the malicious API key.

8. Verification Steps

After sending the HTTP request, use WP-CLI to verify the change in the database:

# Check the value of the plugin's settings option
wp option get alttext_ai_options --format=json

Look for the alttext_ai_api_key field within the returned JSON to see if it matches EXPLOIT_SUCCESSFUL_KEY.

9. Alternative Approaches

Parameter Guessing: If alttext_ai_save_options is not the exact name, check the source for add_action('wp_ajax_nopriv_ and list all registered actions.
Settings Injection: Attempt to inject other settings like alttext_ai_auto_generate to 1 to force the plugin to process every new upload.
REST API Check: Check if the plugin registers any routes via register_rest_route in includes/class-alttext-ai-rest.php (inferred) without a permission_callback.

Research Findings

Static analysis — not yet PoC-verified

Summary

The Alt Text AI plugin for WordPress (versions <= 1.10.15) is vulnerable to unauthorized access due to missing capability checks in its AJAX handlers. This allows unauthenticated attackers to perform administrative actions such as updating the plugin's API key or triggering image synchronization, potentially leading to service disruption or exhaustion of API credits.

Vulnerable Code

// Inferred from research plan section 3 (Code Flow)
// Likely located in classes/class-alttext-ai-admin.php or similar

add_action('wp_ajax_alttext_ai_save_options', 'alttext_ai_save_options');
add_action('wp_ajax_nopriv_alttext_ai_save_options', 'alttext_ai_save_options');

function alttext_ai_save_options() {
    if (isset($_POST['alttext_ai_api_key'])) {
        $options = get_option('alttext_ai_options');
        $options['api_key'] = $_POST['alttext_ai_api_key'];
        update_option('alttext_ai_options', $options);
    }
}

Security Fix

--- a/classes/class-alttext-ai-admin.php
+++ b/classes/class-alttext-ai-admin.php
@@ -10,4 +10,8 @@
 function alttext_ai_save_options() {
+    if ( ! current_user_can( 'manage_options' ) ) {
+        wp_die( __( 'You do not have sufficient permissions to access this page.' ) );
+    }
+    check_ajax_referer( 'alttext_ai_nonce', 'nonce' );
+
     if (isset($_POST['alttext_ai_api_key'])) {
         $options = get_option('alttext_ai_options');

Exploit Outline

The vulnerability is exploited by targeting the WordPress AJAX endpoint at /wp-admin/admin-ajax.php. An unauthenticated attacker can send a POST request with the 'action' parameter set to 'alttext_ai_save_options' (or other vulnerable handlers identified in the plugin). Because the handler lacks both capability checks (current_user_can) and nonce verification, the attacker can include parameters like 'alttext_ai_api_key' to overwrite the plugin's configuration in the database. Successful exploitation results in the unauthorized modification of plugin settings, which can be verified by checking the 'alttext_ai_options' entry in the wp_options table.

References

https://www.wordfence.com/threat-intel/vulnerabilities/id/9d7ea5b7-a4d5-4d1d-943e-3ba9635f24a1?source=api-prod

Check if your site is affected.

Run a free security audit to detect vulnerable plugins, outdated versions, and misconfigurations.

Run free audit Browse CVE database