Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seo vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-11514
The Rank Math plugin up to and including 1.0.40.2 for WordPress allows unauthenticated remote malicious users to update arbitrary WordPress metadata, including the ability to escalate or revoke administrative privileges for existing users via the unsecured rankmath/v1/updateMeta ...
Rankmath Seo
6.5
CVSSv3
CVE-2019-14786
The Rank Math SEO plugin 1.0.27 for WordPress allows non-admin users to reset the settings via the wp-admin/admin-post.php reset-cmb parameter.
Rankmath Seo
6.1
CVSSv3
CVE-2023-34375
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in 10Web SEO by 10Web plugin <= 1.2.9 versions.
10web Seo
4.8
CVSSv3
CVE-2023-23819
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Rolands Umbrovskis itemprop WP for SERP/SEO Rich snippets plugin <= 3.5.201706131 versions.
Itemprop Wp For Serp/seo Rich Snippets Project Itemprop Wp For Serp/seo Rich Snippets
4.8
CVSSv3
CVE-2018-14384
The Website Manager module in SEO Panel 3.13.0 and previous versions is affected by a stored Cross-Site Scripting (XSS) vulnerability, allowing remote authenticated malicious users to inject arbitrary web script or HTML via the websites.php name parameter.
Seopanel Seo Panel
5.4
CVSSv3
CVE-2023-5707
The SEO Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'slider' shortcode and post meta in all versions up to, and including, 1.1.0 due to insufficient input sanitization and output escaping on user supplied attributes. Th...
Seothemes Seo Slider
6.1
CVSSv3
CVE-2023-32800
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in One Rank Math SEO PRO plugin <= 3.0.35 versions.
Rankmath Seo Pro
5.4
CVSSv3
CVE-2023-45269
Cross-Site Request Forgery (CSRF) vulnerability in David Cole Simple SEO plugin <= 2.0.25 versions.
Coleds Simple Seo
4.3
CVSSv3
CVE-2022-36358
Cross-Site Request Forgery (CSRF) vulnerability in SEO Scout plugin <= 0.9.83 at WordPress allows malicious users to trick users with administrative rights to unintentionally change the plugin settings.
Seoscout Seo Scout
5.4
CVSSv3
CVE-2022-36404
Missing Authorization, Cross-Site Request Forgery (CSRF) vulnerability in David Cole Simple SEO (WordPress plugin) plugin <= 1.8.12 versions.
Coleds Simple Seo
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »