All 5 CVE vulnerabilities found in Yoast SEO – Advanced SEO with real-time guidance and built-in AI, with AI-generated Chinese analysis, references, and POCs.
Vendor: yoast
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-14481 | Yoast SEO <= 26.5 - Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Exposure via 'post_id' Parameter CWE-862 | 4.3 | Medium | 2026-05-27 |
| CVE-2026-3427 | Yoast SEO <= 27.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'jsonText' Block Attribute CWE-79 | 6.4 | Medium | 2026-03-22 |
| CVE-2026-1293 | Yoast SEO <= 26.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'yoast-schema' Block Attribute CWE-79 | 6.4 | Medium | 2026-02-06 |
| CVE-2024-4984 | Yoast SEO <= 22.6 - Authenticated (Contributor+) Stored Cross-Site Scripting CWE-79 | 6.4 | Medium | 2024-05-16 |
| CVE-2024-4041 | Yoast SEO <= 22.5 - Reflected Cross-Site Scripting CWE-79 | 6.1 | Medium | 2024-05-09 |
All 5 known CVE vulnerabilities affecting Yoast SEO – Advanced SEO with real-time guidance and built-in AI with full Chinese analysis, references, and POCs where available.