Vulnerabilities and security researches forcopymatic copymatic

Jul 18, 2025

CVE, Research URL: CVE-2025-6781
Home page URL: Security reports for Copymatic – AI Content Writer & Generator
Application: Copymatic – AI Content Writer & Generator
Date: Jul 18, 2025
Research Description: The Copymatic – AI Content Writer & Generator plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.1. This is due to missing or incorrect nonce validation on the 'copymatic-menu' page. This makes it possible for unauthenticated attackers to update the copymatic_apikey option via a forged request granted they can trick a site administrator into performing an action such as clicking on a link.
Affected versions: Min -, max -.
Status: vulnerable

Jun 11, 2024

CVE, Research URL: CVE-2024-35716
Home page URL: Security reports for Copymatic – AI Content Writer & Generator
Application: Copymatic – AI Content Writer & Generator
Date: Jun 11, 2024
Research Description: Missing Authorization vulnerability in Copymatic Copymatic – AI Content Writer & Generator.This issue affects Copymatic – AI Content Writer & Generator: from n/a through 1.9.
Affected versions: Min -, max -.
Status: vulnerable

Jun 06, 2024

CVE, Research URL: CVE-2024-31351
Home page URL: Security reports for Copymatic – AI Content Writer & Generator
Application: Copymatic – AI Content Writer & Generator
Date: May 17, 2024
Research Description: Unrestricted Upload of File with Dangerous Type vulnerability in Copymatic Copymatic – AI Content Writer & Generator.This issue affects Copymatic – AI Content Writer & Generator: from n/a through 1.6.
Affected versions: Min -, max -.
Status: vulnerable