Medium severity5.3NVD Advisory· Published Feb 28, 2022· Updated Jun 17, 2026
CVE-2021-25118
CVE-2021-25118
Description
The Yoast SEO WordPress plugin (from versions 16.7 until 17.2) discloses the full internal path of featured images in posts via the wp/v2/posts REST endpoints which could help an attacker identify other vulnerabilities or help during the exploitation of other identified vulnerabilities.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- WordPress/Yoast SEOdescription
Patches
Vulnerability mechanics
References
2- wpscan.com/vulnerability/2c3f9038-632d-40ef-a099-6ea202efb550nvdExploitThird Party Advisory
- plugins.trac.wordpress.org/changeset/2608691nvdRelease NotesThird Party Advisory
News mentions
0No linked articles in our index yet.