Rankmath

Seo

18 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.5

CVE-2026-34892

  • EPSS 0.27%
  • Veröffentlicht 15.06.2026 20:17:37
  • Zuletzt bearbeitet 15.06.2026 21:24:32

Subscriber Broken Access Control in Rank Math SEO <= 1.0.271 versions.

5.3

CVE-2025-12714

  • EPSS 0.36%
  • Veröffentlicht 29.05.2026 09:28:06
  • Zuletzt bearbeitet 29.05.2026 13:09:05

The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the update_site_editor_homepage function in all versions up to, and including, 1.0.271. This make...

3.8

CVE-2025-64350

  • EPSS 0.2%
  • Veröffentlicht 31.10.2025 11:42:17
  • Zuletzt bearbeitet 27.04.2026 16:16:40

Missing Authorization vulnerability in Rank Math SEO Rank Math SEO seo-by-rank-math allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Rank Math SEO: from n/a through <= 1.0.252.1.

4.3

CVE-2024-13229

  • EPSS 0.42%
  • Veröffentlicht 13.02.2025 05:15:13
  • Zuletzt bearbeitet 24.02.2025 17:07:33

The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the update_metadata() function in all versions up to, and including, 1.0.235. This makes it...

5.4

CVE-2024-13227

  • EPSS 0.43%
  • Veröffentlicht 13.02.2025 05:15:13
  • Zuletzt bearbeitet 24.02.2025 16:44:13

The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Rank Math API in all versions up to, and including, 1.0.235 due to insufficient input sanitization and output...

7.2

CVE-2024-9314

  • EPSS 0.81%
  • Veröffentlicht 05.10.2024 12:15:03
  • Zuletzt bearbeitet 29.01.2025 18:52:17

The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.0.228 via deserialization of untrusted input 'set_redirections' function. This makes it possi...

6.5

CVE-2024-9161

  • EPSS 2.05%
  • Veröffentlicht 05.10.2024 12:15:02
  • Zuletzt bearbeitet 29.01.2025 18:56:32

The Rank Math SEO – AI SEO Tools to Dominate SEO Rankings plugin for WordPress is vulnerable to unauthorized modification and loss of data due to a missing capability check on the 'update_metadata' function in all versions up to, and including, 1.0.2...

5.4

CVE-2024-4627

Exploit
  • EPSS 0.39%
  • Veröffentlicht 02.07.2024 06:15:04
  • Zuletzt bearbeitet 21.11.2024 09:43:14

The Rank Math SEO WordPress plugin before 1.0.219 does not sanitise and escape some of its settings, which could allow users with access to the General Settings (by default admin, however such access can be given to lower roles via the Role Manager ...

8.8

CVE-2023-23888

  • EPSS 0.95%
  • Veröffentlicht 17.05.2024 07:15:49
  • Zuletzt bearbeitet 15.10.2025 14:07:10

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Rank Math Rank Math SEO allows Path Traversal.This issue affects Rank Math SEO: from n/a through 1.0.107.2.

6.4

CVE-2024-4617

  • EPSS 0.37%
  • Veröffentlicht 16.05.2024 11:15:48
  • Zuletzt bearbeitet 15.04.2026 00:35:42

The Rank Math SEO with AI Best SEO Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘id’ parameter in versions up to, and including, 1.0.218 due to insufficient input sanitization and output escaping. This makes it poss...