Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:6 a.m.5 views

CVE-2024-34383

Authorization Bypass Through User-Controlled Key vulnerability in The SEO Guys at SEOPress SEOPress.This issue affects SEOPress: from n/a through 7.7.1...

5.3CVSS5.2AI score0.0051EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-27129

Malicious code in bioql PyPI...

6.4CVSS8.8AI score0.00423EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/08/20 8:3 a.m.10 views

CVE-2025-48298 WordPress SEOPress for MainWP <= 1.4 - Local File Inclusion Vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program 'PHP Remote File Inclusion' vulnerability in Benjamin Denis SEOPress for MainWP seopress-for-mainwp allows PHP Local File Inclusion.This issue affects SEOPress for MainWP: from n/a through = 1.4...

7.5CVSS0.00404EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:34 a.m.5 views

CVE-2024-50455

Missing Authorization vulnerability in Benjamin Denis SEOPress wp-seopress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SEOPress: from n/a through = 8.1.1...

8.8CVSS5.9AI score0.00354EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 8:32 a.m.9 views

CVE-2024-50454

Missing Authorization vulnerability in Benjamin Denis SEOPress wp-seopress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SEOPress: from n/a through = 8.1.1...

5.3CVSS5.9AI score0.00336EPSS
Exploits0References1
OSV
OSV
added 2024/10/29 9:15 p.m.5 views

CVE-2024-50456

Missing Authorization vulnerability in The SEO Guys at SEOPress SEOPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SEOPress: from n/a through 8.1.1...

8.8CVSS5.8AI score0.00291EPSS
Exploits0References1
OSV
OSV
added 2024/10/29 9:15 p.m.4 views

CVE-2024-50455

Missing Authorization vulnerability in The SEO Guys at SEOPress SEOPress allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SEOPress: from n/a through 8.1.1...

8.8CVSS5.8AI score0.00354EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/07/09 12:0 a.m.6 views

WordPress plugin SEOPress security vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security...

9.8CVSS6.8AI score0.03775EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2024/06/24 12:0 a.m.4 views

PT-2024-33319 · WordPress · Seopress

Name of the Vulnerable Software and Affected Versions: SEOPress WordPress plugin versions prior to 7.8 Description: The issue concerns a lack of validation and escaping in one of the Post settings of the SEOPress WordPress plugin. This could allow users with a contributor or higher role to perfor...

6.1CVSS6.7AI score0.00329EPSS
Exploits2References4
Positive Technologies
Positive Technologies
added 2024/05/24 12:0 a.m.18 views

PT-2024-16922 · WordPress · Seopress

Name of the Vulnerable Software and Affected Versions: SEOPress – On-site SEO plugin for WordPress versions up to, and including, 7.5.2.1 Description: The issue arises from insufficient input sanitization and output escaping, allowing Stored Cross-Site Scripting attacks via parameters such as the...

6.4CVSS6AI score0.00259EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2023/05/02 12:0 a.m.5 views

PT-2023-17156 · WordPress · Seopress

Name of the Vulnerable Software and Affected Versions: SEOPress WordPress plugin versions prior to 6.5.0.3 Description: The issue allows high-privilege users, such as admins, to perform PHP Object Injection when a suitable gadget is present, due to the unserialize of user input provided via the...

7.2CVSS7.1AI score0.18505EPSS
Exploits2References4
Vulnrichment
Vulnrichment
added 2021/08/16 6:47 p.m.6 views

CVE-2021-34641 SEOPress <= 5.0.0 – 5.0.3 Authenticated Stored Cross-Site Scripting

The SEOPress WordPress plugin is vulnerable to Stored Cross-Site-Scripting via the processPut function found in the /src/Actions/Api/TitleDescriptionMeta.php file which allows authenticated attackers to inject arbitrary web scripts, in versions 5.0.0 - 5.0.3...

6.4CVSS6.2AI score0.00651EPSS
Exploits2References2
CNNVD
CNNVD
added 2021/08/16 12:0 a.m.5 views

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...

6.4CVSS5.6AI score0.00651EPSS
Exploits2References4
Rows per page
Query Builder