Changeset 3378505

Timestamp:

10/15/2025 12:41:50 AM (4 months ago)

Author:

mxchat

Message:

2.4.7 fixes security vulnerability from the PDF upload.

Location:

mxchat-basic

Files:

• tags/2.4.7 (added)
• tags/2.4.7/admin (added)
• tags/2.4.7/admin/class-ajax-handler.php (added)
• tags/2.4.7/admin/class-knowledge-manager.php (added)
• tags/2.4.7/admin/class-pinecone-manager.php (added)
• tags/2.4.7/css (added)
• tags/2.4.7/css/admin-add-ons.css (added)
• tags/2.4.7/css/admin-style.css (added)
• tags/2.4.7/css/chat-style.css (added)
• tags/2.4.7/css/chat-transcripts.css (added)
• tags/2.4.7/css/content-selector.css (added)
• tags/2.4.7/css/intent-style.css (added)
• tags/2.4.7/css/knowledge-style.css (added)
• tags/2.4.7/css/test-panel.css (added)
• tags/2.4.7/images (added)
• tags/2.4.7/images/Icon-01.svg (added)
• tags/2.4.7/images/Icon-02.svg (added)
• tags/2.4.7/images/Icon-03.svg (added)
• tags/2.4.7/images/Icon-04.svg (added)
• tags/2.4.7/images/pro-only-dark.png (added)
• tags/2.4.7/includes (added)
• tags/2.4.7/includes/class-mxchat-addons.php (added)
• tags/2.4.7/includes/class-mxchat-admin.php (added)
• tags/2.4.7/includes/class-mxchat-integrator.php (added)
• tags/2.4.7/includes/class-mxchat-meta-box.php (added)
• tags/2.4.7/includes/class-mxchat-public.php (added)
• tags/2.4.7/includes/class-mxchat-user.php (added)
• tags/2.4.7/includes/class-mxchat-utils.php (added)
• tags/2.4.7/includes/class-mxchat-woocommerce.php (added)
• tags/2.4.7/includes/class-mxchat-word-handler.php (added)
• tags/2.4.7/includes/pdf-parser (added)
• tags/2.4.7/includes/pdf-parser/alt_autoload.php (added)
• tags/2.4.7/includes/pdf-parser/src (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Config.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Document.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element/ElementArray.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element/ElementBoolean.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element/ElementDate.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element/ElementHexa.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element/ElementMissing.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element/ElementName.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element/ElementNull.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element/ElementNumeric.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element/ElementString.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element/ElementStruct.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Element/ElementXRef.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Encoding (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Encoding.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Encoding/AbstractEncoding.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Encoding/EncodingLocator.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Encoding/ISOLatin1Encoding.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Encoding/ISOLatin9Encoding.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Encoding/MacRomanEncoding.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Encoding/PDFDocEncoding.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Encoding/PostScriptGlyphs.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Encoding/StandardEncoding.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Encoding/WinAnsiEncoding.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Exception (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Exception/EmptyPdfException.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Exception/EncodingNotFoundException.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Exception/MissingPdfHeaderException.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Exception/NotImplementedException.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Font (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Font.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Font/FontCIDFontType0.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Font/FontCIDFontType2.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Font/FontTrueType.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Font/FontType0.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Font/FontType1.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Font/FontType3.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Header.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/PDFObject.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Page.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Pages.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/Parser.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/RawData (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/RawData/FilterHelper.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/RawData/RawDataParser.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/XObject (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/XObject/Form.php (added)
• tags/2.4.7/includes/pdf-parser/src/Smalot/PdfParser/XObject/Image.php (added)
• tags/2.4.7/js (added)
• tags/2.4.7/js/activation-script.js (added)
• tags/2.4.7/js/admin-status.js (added)
• tags/2.4.7/js/chat-script.js (added)
• tags/2.4.7/js/content-selector.js (added)
• tags/2.4.7/js/embedding-check.js (added)
• tags/2.4.7/js/floating-script.js (added)
• tags/2.4.7/js/knowledge-processing.js (added)
• tags/2.4.7/js/meta-box.js (added)
• tags/2.4.7/js/mxchat-admin.js (added)
• tags/2.4.7/js/mxchat-test-streaming.js (added)
• tags/2.4.7/js/mxchat_transcripts.js (added)
• tags/2.4.7/js/my-color-picker.js (added)
• tags/2.4.7/js/test-panel.js (added)
• tags/2.4.7/languages (added)
• tags/2.4.7/languages/mxchat.pot (added)
• tags/2.4.7/mxchat-basic.php (added)
• tags/2.4.7/readme.txt (added)
• trunk/css/chat-style.css (modified) (1 diff)
• trunk/includes/class-mxchat-addons.php (modified) (1 diff)
• trunk/includes/class-mxchat-admin.php (modified) (1 diff)
• trunk/includes/class-mxchat-integrator.php (modified) (6 diffs)
• trunk/mxchat-basic.php (modified) (2 diffs)
• trunk/readme.txt (modified) (3 diffs)

mxchat-basic/trunk/css/chat-style.css

@@ -971 +971 @@
 }
 
+.chatbot-top-bar#exit-chat-button button.exit-chat:hover {
+    background: none;
+}
 .visible {
     display: flex;

mxchat-basic/trunk/includes/class-mxchat-addons.php

@@ -191 +191 @@
      */
     public function enqueue_styles() {
-        $plugin_version = '2.4.6';
+        $plugin_version = '2.4.7';
 
         wp_enqueue_style(

mxchat-basic/trunk/includes/class-mxchat-admin.php

@@ -6531 +6531 @@
 public function mxchat_enqueue_admin_assets() {
     // Get plugin version (define this in your main plugin file)
-    $version = defined('MXCHAT_VERSION') ? MXCHAT_VERSION : '2.4.6';
+    $version = defined('MXCHAT_VERSION') ? MXCHAT_VERSION : '2.4.7';
 
     // Use file modification time for development (remove in production)

mxchat-basic/trunk/includes/class-mxchat-integrator.php

@@ -1867 +1867 @@
     
     if (false === $results) {
-        // Fetch new results from the Brave Search API
-        $response = wp_remote_get(
+        // SECURITY FIX: Changed to wp_safe_remote_get
+        $response = wp_safe_remote_get(
             $api_url,
             array(
@@ -2009 +2009 @@
         ];
 
-        $response = wp_remote_get($api_url, $args);
+        // SECURITY FIX: Changed to wp_safe_remote_get
+        $response = wp_safe_remote_get($api_url, $args);
 
         if (is_wp_error($response)) {
@@ -2409 +2410 @@
 
 /**
- * Enhanced fetch_and_split_pdf_pages with detailed debugging
+ * Enhanced fetch_and_split_pdf_pages with SSRF protection
  */
 private function fetch_and_split_pdf_pages($pdf_source, $max_pages) {
@@ -2466 +2467 @@
         if (filter_var($pdf_source, FILTER_VALIDATE_URL)) {
             //error_log("Downloading PDF from URL...");
+            
+            // SECURITY FIX: Validate URL before processing
+            if (!$this->mxchat_is_safe_pdf_url($pdf_source)) {
+                //error_log("❌ SECURITY: Blocked unsafe PDF URL");
+                return false;
+            }
+            
             $temp_file = wp_tempnam($pdf_source);
-            $response = wp_remote_get($pdf_source, [
+            
+            // SECURITY FIX: Changed from wp_remote_get to wp_safe_remote_get
+            $response = wp_safe_remote_get($pdf_source, [
                 'timeout' => 60,
                 'headers' => ['User-Agent' => 'MxChat PDF Processor']
@@ -2550 +2560 @@
     }
 }
+
+
+/**
+ * Validate PDF URL for security
+ * Prevents SSRF attacks by blocking dangerous URLs
+ */
+ 
+private function mxchat_is_safe_pdf_url($url) {
+    // Use WordPress core function for comprehensive validation
+    // This blocks localhost, private IPs, and reserved IP ranges
+    $validated_url = wp_http_validate_url($url);
+    
+    if ($validated_url === false) {
+        return false;
+    }
+    
+    // Additional check: only allow HTTP/HTTPS schemes
+    $parsed = parse_url($url);
+    if (!isset($parsed['scheme']) || !in_array($parsed['scheme'], ['http', 'https'], true)) {
+        return false;
+    }
+    
+    return true;
+}
+
 
 private function mxchat_clean_text($text) {
@@ -6339 +6374 @@
 public function mxchat_enqueue_scripts_styles() {
     // Define version numbers for the styles and scripts
-    $chat_style_version = '2.4.6';
-    $chat_script_version = '2.4.6';
+    $chat_style_version = '2.4.7';
+    $chat_script_version = '2.4.7';
     // Enqueue the script
     wp_enqueue_script(

mxchat-basic/trunk/mxchat-basic.php

@@ -4 +4 @@
  * Plugin URI: https://mxchat.ai/
  * Description: AI chatbot for WordPress with OpenAI, Claude, xAI, DeepSeek, live agent, PDF uploads, WooCommerce, and training on website data.
- * Version: 2.4.6
+ * Version: 2.4.7
  * Author: MxChat
  * Author URI: https://mxchat.ai
@@ -18 +18 @@
 
 // Define plugin version constant for asset versioning
-define('MXCHAT_VERSION', '2.4.6');
+define('MXCHAT_VERSION', '2.4.7');
 
 function mxchat_load_textdomain() {

mxchat-basic/trunk/readme.txt

@@ -6 +6 @@
 Tested up to: 6.8
 Requires PHP: 7.2
-Stable tag: 2.4.6
+Stable tag: 2.4.7
 License: GPLv2 or later
 License URI: https://www.gnu.org/licenses/gpl-2.0.html
@@ -182 +182 @@
 == Changelog ==
 
-= 2.4.6 - October, 3, 2025 =
-- Update: Added plugin URI information.
+= 2.4.7 - October 13, 2025 =
+- Security: Fixed Server-Side Request Forgery (SSRF) vulnerability in PDF processing (CVE-2025-10705)
 
 = 2.4.5 - September 30, 2025 =
@@ -556 +556 @@
 == Upgrade Notice ==
 
-= 2.4.6 =
-- Update: Added plugin URI information.
+= 2.4.7 =
+- Security: Fixed Server-Side Request Forgery (SSRF) vulnerability in PDF processing (CVE-2025-10705)
 
 == License & Warranty ==