XSS Bug in SEOPress WordPress Plugin Allows Full Site Takeover – Threatpost


The bug would allow a number of malicious actions, up to and including full site takeover. The vulnerable plugin is installed on 100,000 websites.

A stored cross-site scripting (XSS) vulnerability in the SEOPress WordPress plugin could allow attackers to inject arbitrary web scripts into websites, researchers said.

SEOPress is a search engine optimization (SEO) tool that lets site owners manage SEO metadata, social-media cards, Google Ad settings and more. It’s installed on more…


More Info

About mblog.my

Check Also

WordPress SEO Agency: How To Choose The Right SEO Agency

What if we told you that it’s possible for your WordPress website to show up …

Leave a Reply

Your email address will not be published. Required fields are marked *