2 matches found
CVE-2025-14386
creationtimestamp| type| source ---|---|--- 2026-01-28 13:02:42+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdidhiugzx2h 2026-01-28 14:29:29+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdiicpjffi2m...
CVE-2025-14386 Search Atlas SEO – Premier SEO Plugin for One-Click WP Publishing & Integrated AI Optimization 2.4.4 - 2.5.12 - Missing Authorization to Authenticated (Subscriber+) Authentication Bypass via Account Takeover
The Search Atlas SEO – Premier SEO Plugin for One-Click WP Publishing & Integrated AI Optimization plugin for WordPress is vulnerable to authentication bypass due to a missing capability check on the 'generatessourl' and 'validatessotoken' functions in versions 2.4.4 to 2.5.12. This makes it...