SEO by Yoast plugin is prone to a blind SQL injection vulnerability. This vulnerability is found “admin/class-bulk-editor-list-table.php”. Because of it, the orderby and order “get” parameters are not sufficiently sanitised before being used within a SQL query.
Update the plugin.