|Category:||Web application abuses|
|Title:||WordPress All in One SEO Pack Plugin < 3.6.2 XSS Vulnerability|
|Summary:||The WordPress plugin All in One SEO Pack is prone to a stored cross-site scripting (XSS) vulnerability.|
The WordPress plugin All in One SEO Pack is prone to a stored cross-site scripting (XSS) vulnerability.
The SEO meta data for posts, including the SEO title and SEO description fields,
it could be used to inject backdoors or add new administrative users and take over a site.
WordPress All in One SEO Pack plugin before version 3.6.2.
Update to version 3.6.2 or later.
|Copyright||Copyright (C) 2020 Greenbone Networks GmbH|
|This is only one of 85075 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.