Rank.Math.WP.SEO.Plugin.updateMeta.Access.Control.Weakness
Description
This indicates an attack attempt to exploit an Access Control Weakness Vulnerability in Rank Math Wordpress SEO Plugin.
The vulnerability is due to a lack of authorization verification on the updateMeta REST endpoint. A remote, unauthenticated attacker can exploit this vulnerability by sending a crafted request to the updateMeta REST API endpoint. Successful exploitation results in the unauthorized modification of metadata.
Affected Products
Rank Math Wordpress SEO Plugin prior to 1.0.41
Impact
Privilege Escalation: Remote attackers can leverage their privileges on vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://rankmath.com/changelog/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |