WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

All in One SEO Pack <= 2.1.5 - aioseop_functions.php new_meta Parameter XSS

Description

The All in One SEO Pack WordPress plugin was affected by an aioseop_functions.php new_meta Parameter XSS security vulnerability.

Affects Plugins

all-in-one-seo-pack
Fixed in version 2.1.6

References

URL
https://blog.sucuri.net/2014/05/vulnerability-found-in-the-all-in-one-seo-pack-wordpress-plugin.html

Classification

Type

XSS

OWASP top 10
A7: Cross-Site Scripting (XSS)
CWE
CWE-79

Miscellaneous

Verified

No

WPVDB ID
845a890f-1c56-4075-a717-c9627586cbbe

Timeline

Publicly Published

2014-08-01 (about 8 years ago)

Added

2014-08-01 (about 8 years ago)

Last Updated

2019-10-21 (about 2 years ago)

Our Other Services

WPScan WordPress Security Plugin