2025-01-07 04:22:19
Wordfence
PUBLISHED
The WordLift – AI powered SEO – Schema plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the wl_config_plugin AJAX action in all versions up to, and including, 3.54.0. This makes it possible for unauthenticated attackers to update the plugins settings.