CVE-2025-12847 | All in One SEO Plugin up to 4.8.9 on WordPress REST API Endpoint image-generator authorization

A vulnerability identified as problematic has been detected in All in One SEO Plugin up to 4.8.9 on WordPress. This issue affects some unknown processing of the file /wp-json/aioseo/v1/ai/image-generator of the component REST API Endpoint. Performing manipulation results in missing authorization.

This vulnerability was named CVE-2025-12847. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More