WordPress Plugin Vulnerabilities

Yoast SEO < 27.2 - Contributor+ Stored XSS via 'jsonText' Block Attribute

Description

The plugin is vulnerable to Stored Cross-Site Scripting via the the `jsonText` block attribute due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Affects Plugins

Plugin icon
wordpress-seo
Fixed in 27.2

References

CVE
CVE-2026-3427
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/fee1fef5-5716-49e0-a04e-d0dae527fcfc

Classification

Type
XSS
OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79
CVSS
5.9 (medium)

Miscellaneous

Original Researcher
Osvaldo Noe Gonzalez Del Rio (Os)
Verified
No
WPVDB ID
4e86ea46-84f9-412e-b167-6e6f748ed41e

Timeline

Publicly Published
2026-03-21 (about 1 month ago)
Added
2026-03-23 (about 1 month ago)
Last Updated
2026-03-23 (about 1 month ago)

Other

Published
Title
Published
2016-08-05
Title
Count Per Day <= 3.5.4 - Stored Cross-Site Scripting (XSS)
Published
2024-12-11
Title
CleverNode Related Content < 1.1.6 - Reflected Cross-Site Scripting
Published
2024-12-23
Title
Email Subscribers < 5.7.45 - Admin+ Stored XSS
Published
2023-04-14
Title
Booqable Rental <= 2.4.16 - Admin+ Stored XSS
Published
2024-09-30
Title
The Pack Elementor addons < 2.0.9 - Authenticated (Author+) Stored Cross-Site Scripting