CVE Catalog
CVE-2026-40722
MediumCVSS 5.5Exploitation Probability (EPSS)
Low risk0.32%
23th percentile — higher than 23% of all known CVEs
Summary
A missing authorization vulnerability in Yoast SEO Premium allows exploiting incorrectly configured access control security levels.
Risk Assessment
Organizations may be exposed to unauthorized access to sensitive features or data, potentially leading to serious security breaches.
Recommendation
It is recommended to update Yoast SEO Premium to the latest version and review access control configurations to ensure proper protection.
Original NVD description (English source)
Missing Authorization vulnerability in Yoast BV Yoast SEO Premium allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Yoast SEO Premium: from n/a through 26.6.

