Product
seopress
12 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-50456
CVE-2024-50455
CVE-2024-9225
CVE-2024-5488
CVE-2024-4900
CVE-2024-4899
CVE-2024-1168
CVE-2024-1134
CVE-2024-2165
CVE-2023-6290
CVE-2023-1669
CVE-2021-34641
<= 8.2
Missing Authorization vulnerability in Benjamin Denis SEOPress wp-seopress allows Exploiting Incorrectly Configured Access Control
< 8.2
Missing Authorization vulnerability in Benjamin Denis SEOPress wp-seopress allows Exploiting Incorrectly Configured Access Control
< 8.2
The SEOPress - On-site SEO plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg &
< 7.9
The SEOPress WordPress plugin before 7.9 does not properly protect some of its REST API routes, which combined with another Objec
< 7.8
The SEOPress WordPress plugin before 7.8 does not validate and escape one of its Post settings, which could allow contributor and
< 7.8
The SEOPress WordPress plugin before 7.8 does not sanitise and escape some of its Post settings, which could allow high privilege
<= 7.9
The SEOPress - On-site SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's social image URL in
< 7.6
The SEOPress - On-site SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the SEO title and description par
< 7.6
The SEOPress - On-site SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image alt parameter in all ve
< 7.3
The SEOPress WordPress plugin before 7.3 does not sanitise and escape some of its settings, which could allow high privilege users
< 6.5.0.3
The SEOPress WordPress plugin before 6.5.0.3 unserializes user input provided via the settings, which could allow high-privilege u
>= 5.0.0 and < 5.0.4
The SEOPress WordPress plugin is vulnerable to Stored Cross-Site-Scripting via the processPut function found in the ~/src/Actions/