Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seo vulnerabilities and exploits
(subscribe to this query)
6.4
CVSSv3
CVE-2021-31779
The yoast_seo (aka Yoast SEO) extension prior to 7.2.1 for TYPO3 allows SSRF via a backend user account.
Yoast Yoast Seo
5.4
CVSSv3
CVE-2021-24153
A Stored Cross-Site Scripting vulnerability exists in the Yoast SEO WordPress plugin prior to 3.4.1, which had built-in blacklist filters which were blacklisting Parenthesis as well as several functions such as alert but bypasses were found.
Yoast Yoast Seo
5.4
CVSSv3
CVE-2021-24187
The setting page of the SEO Redirection Plugin - 301 Redirect Manager WordPress plugin prior to 6.4 is vulnerable to reflected Cross-Site Scripting (XSS) as user input is not properly sanitised before being output in an attribute.
Clogica Seo Redirection
8.8
CVSSv3
CVE-2022-40695
Multiple Cross-Site Scripting (CSRF) vulnerabilities in SEO Redirection Plugin plugin <= 8.9 on WordPress.
Clogica Seo Redirection
NA
CVE-2012-6692
Cross-site scripting (XSS) vulnerability in js/wp-seo-metabox.js in the WordPress SEO by Yoast plugin prior to 2.2 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the post_title parameter to wp-admin/post-new.php, which is not properly handl...
Yoast Wordpress Seo
5.4
CVSSv3
CVE-2022-1628
The Simple SEO plugin for WordPress is vulnerable to attribute-based stored Cross-Site Scripting in versions up to, and including 1.7.91, due to insufficient sanitization or escaping on the SEO social and standard title parameters. This can be exploited by authenticated users wit...
Coleds Simple Seo
6.6
CVSSv3
CVE-2018-19370
A Race condition vulnerability in unzip_file in admin/import/class-import-settings.php in the Yoast SEO (wordpress-seo) plugin prior to 9.2.0 for WordPress allows an SEO Manager to perform command execution on the Operating System via a ZIP import.
Yoast Yoast Seo
6.1
CVSSv3
CVE-2017-10838
Cross-site scripting vulnerability in SEO Panel prior to version 3.11.0 allows an malicious user to inject arbitrary web script or HTML via unspecified vectors.
Seopanel Seo Panel
8.8
CVSSv3
CVE-2017-10839
SQL injection vulnerability in the SEO Panel prior to version 3.11.0 allows authenticated malicious users to execute arbitrary SQL commands via unspecified vectors.
Seopanel Seo Panel
NA
CVE-2007-3117
Cross-site scripting (XSS) vulnerability in the SEO module in ADPLAN 3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors related to HTTP headers.
Adplan Seo 3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »