KLA10481
Multiple vulnerabilities in WordPress SEO plugin
Обновлено: 17/06/2019
Дата обнаружения
17/03/2015
Уровень угрозы
High
Описание

Multiple CSRF and SQL injection vulnerabilities were found in WordPress SEO plugin. These vulnerabilities can be exploited remotely via vectors related to wpseo_bulk-editor page.

Пораженные продукты

Wordpress SEO plugin versions earlier than 1.5.7
Wordpress SEO plugin 1.6 versions earlier than 1.6.4
Wordpress SEO plugin 1.7 versions earlier than 1.7.4

Решение

Update to latest version!
Get WordPress SEO plugin

Первичный источник обнаружения
Plugin changelog
Оказываемое влияние
?
ACE 
[?]

SB 
[?]
CVE-IDS