CVE Catalog

CVE-2026-57429

MediumCVSS 6.5
Published: Updated: Translated: NVD NIST

Summary

The Slim SEO plugin versions up to 4.6.2 contain a vulnerability involving broken access control for contributors. A user with the contributor role can gain unauthorized access to SEO management functions.

Risk Assessment

The risk involves the possibility of unauthorized users modifying SEO settings, which can lead to content integrity violations and potential SEO attacks.

Recommendation

It is recommended to immediately update the Slim SEO plugin to the latest available version that fixes this vulnerability.

Original NVD description (English source)

Contributor Broken Access Control in Slim SEO <= 4.6.2 versions.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS