Two critical and high severity security vulnerabilities in the highly popular “All in One” SEO WordPress plugin exposed over 3 million websites to takeover attacks. The security flaws discovered and reported by Automattic security researcher Marc Montpas are a critical Authenticated Privilege Escalation bug (CVE-2021-25036) and a high severity Authenticated SQL Injection […]
Plugin
Protection Hazard: High Exploitation Amount: Quick CVSS Rating: 9.9 / 7.7 Vulnerability: Privilege Escalation, SQL Injection Patched Edition: 4.1.5.3 Very last week, stability researcher at Automattic Marc Montpas lately discovered two significant stability vulnerabilities within one particular of the most preferred Seo plugins utilised by WordPress site owners: All in […]