What happened
The ChatBot plugin for WordPress, a widely-deployed AI chatbot solution, contains a broken access control vulnerability in versions up to and including 7.9.7. Published June 15, 2026 (CVSS 7.1 HIGH). Subscriber-level authenticated users can access functionality or data that should be restricted to higher roles such as Administrator.
Why it matters
Chatbot plugins frequently store conversation histories containing sensitive customer data, AI model API credentials, and custom prompt/system instruction configurations that define the chatbot's behavior. A subscriber-level access control bypass allows low-trust registered users to read private chat logs, exfiltrate AI API keys, or modify the bot's system prompts to hijack its behavior for all subsequent users.
Attack vector
An authenticated attacker with Subscriber-level privileges exploits broken access control logic in the ChatBot plugin ≤ 7.9.7 to access or modify chatbot configuration, conversation logs, or other functionality restricted to higher-privileged roles.
Affected systems
ChatBot for WordPress ≤ 7.9.7
Mitigation
Update ChatBot to version 7.9.8 or later. Advisory: https://patchstack.com/database/wordpress/plugin/chatbot/vulnerability/wordpress-chatbot-plugin-7-9-7-broken-access-control-vulnerability