CVE-2025-13085 | SiteSEO Plugin up to 1.3.2 on WordPress AJAX resolve_variables resource injection

A vulnerability identified as problematic has been detected in SiteSEO Plugin up to 1.3.2 on WordPress. Impacted is the function resolve_variables of the component AJAX Handler. This manipulation causes improper control of resource identifiers.

This vulnerability is tracked as CVE-2025-13085. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More