[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fGYaY7A9rqqvz3aggU3pw3zigBP4VvFHRrv6_xzRQ8_U":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"WF-dcd7204f-d950-4fb8-beb2-d9f619824fa1-all-in-one-seo-pack","all-in-one-seo-privilege-escalation-to-arbitrary-post-modification","All in One SEO \u003C= 2.2.4.1 - Privilege Escalation to Arbitrary Post Modification","The All in One SEO plugin for WordPress is vulnerable to Authenticated Privilege Escalation leading to Post Changes in versions up to, and including, 2.2.4.1. This is due to certain actions being available to low-privileged users. This makes it possible for Subscriber-level attackers to add or modify certain parameters used by the plugin.  This includes the post’s SEO title, description and keyword meta tags.  This could be used to decrease a site's Search Engine Results Page (SERP) ranking.","all-in-one-seo-pack",null,"\u003C=2.2.4.1","2.2.5","medium",4.3,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:L\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","","2014-05-31 00:00:00","2024-01-22 19:56:02",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fdcd7204f-d950-4fb8-beb2-d9f619824fa1?source=api-prod",3524]