XSS Bug in SEOPress WordPress Plugin Allows Full Site Takeover – Threatpost


The bug would allow a number of malicious actions, up to and including full site takeover. The vulnerable plugin is installed on 100,000 websites.

A stored cross-site scripting (XSS) vulnerability in the SEOPress WordPress plugin could allow attackers to inject arbitrary web scripts into websites, researchers said.

SEOPress is a search engine optimization (SEO) tool that lets site owners manage SEO metadata, social-media cards, Google Ad settings and more. It’s installed on more…


More Info

About mblog.my

Check Also

How To Add An Author Box In WordPress?

Share Tweet Share Share Email Do you have …

Leave a Reply

Your email address will not be published. Required fields are marked *