Etavrian
keyboard_arrow_right Created with Sketch.
News
keyboard_arrow_right Created with Sketch.
All in One SEO Flaw Exposes AI Tokens - Is Your WordPress Site Quietly at Risk?

All in One SEO Flaw Exposes AI Tokens - Is Your WordPress Site Quietly at Risk?

Author:
Etavrian AI
Reviewed:
Andrii Daniv
2
min read
Jan 16, 2026
Minimalist tech illustration of site settings dashboard showing exposed AI token vulnerability and WordPress sites

A recently disclosed security vulnerability in the All in One SEO (AIOSEO) WordPress plugin affects more than 3 million installations. The flaw allows authenticated users with Contributor-level access or higher to obtain a site's global AI access token. The AIOSEO development team has released a fix in version 4.9.3 of the plugin, and site owners are advised to update as soon as possible.

All In One SEO WordPress Vulnerability Affects Over 3 Million Sites
All in One SEO plugin vulnerability affects an estimated 3+ million WordPress sites.

All In One SEO WordPress vulnerability: key details

Security company Wordfence reports that the issue stems from a missing permission check on a specific REST API endpoint. The affected endpoint, /aioseo/v1/ai/credits, returns information about a site's AI usage and remaining credits. Because the plugin did not restrict access correctly, lower-privileged users could access sensitive AI credentials.

Wordfence describes the issue as:

"Missing Authorization to Authenticated Contributor AI Access Token and Credit Disclosure."

According to its advisory, "authenticated attackers, with Contributor-level access and above," could disclose the global AI access token. The plugin uses this token to communicate with external AIOSEO AI services for content and media generation.

Key facts include:

  • Plugin: All in One SEO (AIOSEO) for WordPress
  • Affected versions: All versions up to and including 4.9.2
  • Fixed version: 4.9.3, which adds hardened API route checks
  • Installation base: 3+ million sites, per the official WordPress plugin listing
  • Vulnerable endpoint: /aioseo/v1/ai/credits without proper capability verification
  • Impact: Exposure of the global AI access token and AI credit information to contributor-level accounts

Background context on AIOSEO security issues

According to Wordfence, this AI token disclosure is one of several AIOSEO vulnerabilities reported in 2025. Its vulnerability database lists six separate issues for the plugin that year, including SQL injection, information disclosure, arbitrary media deletion, missing authorization checks, sensitive data exposure, and stored cross-site scripting.

Wordfence notes that several of these cases involved low-privilege roles, such as Contributor or Subscriber, accessing or modifying restricted data. The AI token issue follows the same pattern of insufficient permission enforcement on specific functions within the plugin.

For comparison, Wordfence data for 2025 records different counts for other major WordPress SEO plugins: Yoast SEO is listed with zero disclosed vulnerabilities, Rank Math with four, and Squirrly SEO with three during the same period.

Official sources and disclosures

Wordfence published its technical advisory on the AI token vulnerability in All in One SEO on its threat intelligence site, which describes the flaw in detail and provides remediation guidance.

The AIOSEO development team documents the fix on the official WordPress.org plugin page. Version 4.9.3 lists a security change that states: "Hardened API routes to prevent AI access token from being exposed." This is recorded in the plugin's WordPress.org page in the official plugin changelog.

Quickly summarize and get insighs with: 
Author
Etavrian AI
Etavrian AI is developed by Andrii Daniv to produce and optimize content for etavrian.com website.
Reviewed
Andrew Daniv, Andrii Daniv
Andrii Daniv
Andrii Daniv is the founder and owner of Etavrian, a performance-driven agency specializing in PPC and SEO services for B2B and e‑commerce businesses.
Quickly summarize and get insighs with: 
Table of contents
Table of contents

More articles

Minimalist AI illustration brain feeding recommendation funnel with stealth marketing flagged prompts detection shieldMicrosoft Finds Hidden Prompts Trying to Turn Your AI Into a Marketing Machine
2
min read
Minimalist analytics dashboard showing PMax clicks on unknown sites with risky and safe search partnersNew Google Ads Performance Max report quietly reveals Search Partner sites in some accounts
2
min read
Minimalist tech illustration of AI training dashboard with toggle set to on showing free accessGoogle's New AI Certificate Could Be Free For Your Business - Here's Who Qualifies
2
min read
Minimalist Scenario Planner dashboard with charts toggle ROI badge alert ribbon and marketer reviewing tabletNew Meridian Scenario Planner turns MMM insights into budget moves marketers can actually use
2
min read
logo
Ready to speak with a
marketing expert?
Book a call
Services
SEO servicesGoogle Ads servicesMeta Ads servicesContent Marketing services
Company
About UsContact UsIndustriesOur Mission
Resources
NewsBlogCase studies
© 2025 Etavrian. All Rights Reserved.
Privacy Policy & Terms of Use
LinkedInFacebookTwitter