2 matches found
CVE-2025-14384 All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic <= 4.9.2 - Missing Authorization to Authenticated (Contributor+) AI Access Token and Credit Disclosure
The All in One SEO – Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the /aioseo/v1/ai/credits REST route in all versions up to, and including, 4.9.2. This makes it possible for...
WordPress All in One SEO - Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic plugin <= 4.9.2 - Missing Authorization to Authenticated (Contributor+) AI Access Token and Credit Disclosure vulnerability
WordPress All in One SEO - Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic plugin = 4.9.2 - Missing Authorization to Authenticated Contributor+ AI Access Token and Credit Disclosure vulnerability discovered by NosleeP++ in WordPress Plugin All In One SEO Pack versions = 4.9.2...