CVE Catalog

CVE-2026-40722

MediumCVSS 5.5
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.32%

23th percentile — higher than 23% of all known CVEs

Summary

A missing authorization vulnerability in Yoast SEO Premium allows exploiting incorrectly configured access control security levels.

Risk Assessment

Organizations may be exposed to unauthorized access to sensitive features or data, potentially leading to serious security breaches.

Recommendation

It is recommended to update Yoast SEO Premium to the latest version and review access control configurations to ensure proper protection.

Original NVD description (English source)

Missing Authorization vulnerability in Yoast BV Yoast SEO Premium allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Yoast SEO Premium: from n/a through 26.6.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS