WordPress Automatic

Vulnerabilities 13Slug wp-automatic

Minimum safe version

3.119.0

Update to 3.119.0 or later to address 13 fixable vulnerabilities

Medium 4.7

2025-08-26< 3.119.0

WordPress Automatic Plugin - AI content generator and auto poster plugin <= 3.118.0 - Cross-Site Request Forgery to Stored Cross-Site Scripting

EUVD Wordfence CVE

High 8.8

2025-06-11< 3.116.0

WordPress Automatic Plugin <= 3.115.0 is vulnerable to Arbitrary File Upload

Patchstack EUVD Wordfence CVE

Medium 6.4

2024-05-20< 3.95.0

WordPress Automatic Plugin <= 3.94.0 is vulnerable to Cross Site Scripting (XSS)

Patchstack CVE Wordfence

High 7.6

2024-04-22< 3.93.0

CVE-2024-32693

CVE Patchstack Wordfence

Critical 9.3

2024-05-17< 3.92.1

CVE-2024-27954

CVE Wordfence Patchstack WPScan

High 8.8

2024-05-17< 3.92.1

CVE-2024-27955

CVE Wordfence Patchstack WPScan

Critical 9.9

2024-03-21< 3.92.1

CVE-2024-27956

CVE Wordfence Patchstack WPScan

N/A

< 2.0.4

Automatic 2.0.3 - csv.php q Parameter SQL Injection

WPScan

Critical 9.8

2023-06-07< 3.53.3

CVE-2021-4374

CVE WPScan

N/A

2014-08-01< 2.0.4

WordPress Automatic Plugin <= 2.0.3 - Cross-Site Request Forgery to SQL Injection

Wordfence

N/A

2021-09-06< 3.53.3

WordPress Automatic Plugin <= 3.53.2 - Unauthenticated Arbitrary Options Update

Wordfence

N/A

2012-06-16< 2.0.4

WordPress Automatic Plugin 2.0.3 - SQL Injection

Patchstack

N/A

2021-09-06< 3.53.3

WordPress Automatic premium plugin <= 3.53.2 - Unauthenticated Arbitrary WordPress Options Change vulnerability

Patchstack