Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seo vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-39297
MelisCms provides a full CMS for Melis Platform, including templating system, drag'n'drop of plugins, SEO and many administration tools. Attackers can deserialize arbitrary data on affected versions of `melisplatform/melis-cms`, and ultimately leads to the execution of ...
Melistechnology Meliscms
9.8
CVSSv3
CVE-2022-39298
MelisFront is the engine that displays website hosted on Melis Platform. It deals with showing pages, plugins, URL rewritting, search optimization and SEO, etc. Attackers can deserialize arbitrary data on affected versions of `melisplatform/melis-front`, and ultimately leads to t...
Melistechnology Meliscms
9.8
CVSSv3
CVE-2022-36376
Server-Side Request Forgery (SSRF) vulnerability in Rank Math SEO plugin <= 1.0.95 at WordPress.
Rankmath Seo
9.8
CVSSv3
CVE-2020-11514
The Rank Math plugin up to and including 1.0.40.2 for WordPress allows unauthenticated remote malicious users to update arbitrary WordPress metadata, including the ability to escalate or revoke administrative privileges for existing users via the unsecured rankmath/v1/updateMeta ...
Rankmath Seo
9.8
CVSSv3
CVE-2019-13478
The Yoast SEO plugin prior to 11.6-RC5 for WordPress does not properly restrict unfiltered HTML in term descriptions.
Yoast Yoast Seo 11.6
Yoast Yoast Seo
8.8
CVSSv3
CVE-2024-4847
The Alt Text AI – Automatically generate image alt text for SEO and accessibility plugin for WordPress is vulnerable to generic SQL Injection via the ‘last_post_id’ parameter in all versions up to, and including, 1.4.9 due to insufficient escaping on the user su...
8.8
CVSSv3
CVE-2023-28780
Cross-Site Request Forgery (CSRF) vulnerability in Yoast Yoast Local Premium.This issue affects Yoast Local Premium: from n/a up to and including 14.8.
Yoast Yoast Local Seo
8.8
CVSSv3
CVE-2023-46618
Cross-Site Request Forgery (CSRF) vulnerability in Bala Krishna, Sergey Yakovlev Category SEO Meta Tags plugin <= 2.5 versions.
Bala-krishna Category Seo Meta Tags
8.8
CVSSv3
CVE-2023-35030
Cross-site request forgery (CSRF) vulnerability in the Layout module's SEO configuration in Liferay Portal 7.4.3.70 up to and including 7.4.3.76, and Liferay DXP 7.4 update 70 through 76 allows remote malicious users to execute arbitrary code in the scripting console via the...
Liferay Dxp 7.4
Liferay Liferay Portal
8.8
CVSSv3
CVE-2021-4337
Sixteen XforWooCommerce Add-On Plugins for WordPress are vulnerable to authorization bypass due to a missing capability check on the wp_ajax_svx_ajax_factory function in various versions listed below. This makes it possible for authenticated attackers, with subscriber-level permi...
Xforwoocommerce Xforwoocommerce
Xforwoocommerce Warranties And Returns
Xforwoocommerce Share\\, Print And Pdf Products
Xforwoocommerce Product Loops
Xforwoocommerce Product Filter
Xforwoocommerce Price Commander
Xforwoocommerce Package Quantity
Xforwoocommerce Live Search
Xforwoocommerce Live Product Editor
Xforwoocommerce Improved Sale Badges
Xforwoocommerce Improved Product Options
Xforwoocommerce Floating Cart
Xforwoocommerce Comment And Review Spam Control
Xforwoocommerce Bulk Add To Cart
Xforwoocommerce Autopilot Seo
Xforwoocommerce Add Product Tabs
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »