Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
all in one seo pack vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2015-0902
The Semper Fi All in One SEO Pack plugin prior to 2.2.6 for WordPress does not consider the presence of password protection during generation of the Meta Description field, which allows remote malicious users to obtain sensitive information by reading HTML source code.
Semperfiwebdesign All In One Seo Pack
383
VMScore
CVE-2013-5988
A Cross-site Scripting (XSS) vulnerability exists in the All in One SEO Pack plugin prior to 2.0.3.1 for WordPress via the Search parameter.
Semperplugins All In One Seo Pack
312
VMScore
CVE-2020-35946
An issue exists in the All in One SEO Pack plugin prior to 3.6.2 for WordPress. The SEO Description and Title fields are vulnerable to unsanitized input from a Contributor, leading to stored XSS.
Semperplugins All In One Seo Pack
312
VMScore
CVE-2019-16520
The all-in-one-seo-pack plugin prior to 3.2.7 for WordPress (aka All in One SEO Pack) is susceptible to Stored XSS due to improper encoding of the SEO-specific description for posts provided by the plugin via unsafe placeholder replacement.
Semperplugins All In One Seo Pack
NA
CVE-2023-0585
The All in One SEO Pack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 4.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with Administra...
Aioseo All In One Seo
NA
CVE-2023-0586
The All in One SEO Pack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 4.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with Contributo...
Aioseo All In One Seo
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started