Search Atlas SEO – Premier SEO Plugin for One-Click WP Publishing & Integrated AI Optimization 2.4.4 – 2.5.15 – Missing Authorization to Authenticated (Subscriber+) Authentication Bypass via Account Takeover | CVE 2025-14386 | Plugin Vulnerabilities

Description

The Search Atlas SEO – Premier SEO Plugin for One-Click WP Publishing & Integrated AI Optimization plugin for WordPress is vulnerable to authentication bypass due to a missing capability check on the 'generate_sso_url' and 'validate_sso_token' functions in versions 2.4.4 to 2.5.15. This makes it possible for authenticated attackers, with Subscriber-level access and above, to extract the 'nonce_token' authentication value to log in to the first Administrator's account.

Affects Plugins

Fixed in 2.5.16

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/6f63d2c4-cbae-4177-8494-daca96449ecc

Classification

Type

NO AUTHORISATION

OWASP top 10

A5: Broken Access Control

CWE

CVSS

Miscellaneous

Original Researcher

kr0d

Verified

No

WPVDB ID

01a0adf9-f2ac-49c9-a068-518be5a8981b

Timeline

Publicly Published

2026-01-27 (about 3 months ago)

Added

2026-01-27 (about 3 months ago)

Last Updated

2026-04-09 (about 1 month ago)

Other

Published

Title

Published

2025-01-16

Title

Minterpress <= 1.0.5 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Content Deletion

Published

2024-04-05

Title

All-in-One Video Gallery < 3.6.0 - Missing Authorization

Published

2026-03-26

Title

Share This Image < 2.13 - Missing Authorization

Published

2025-03-27

Title

WP ERP < 1.14.0 - Missing Authorization

Published

2026-04-08

Title

Quick Playground < 1.3.2 - Missing Authorization to Unauthenticated Arbitrary File Upload