2 matches found
CVE-2020-35946
An issue was discovered in the All in One SEO Pack plugin before 3.6.2 for WordPress. The SEO Description and Title fields are vulnerable to unsanitized input from a Contributor, leading to stored XSS...
CVE-2020-35946
The CVE-2020-35946 issue affects the WordPress plugin All in One SEO Pack up to version 3.6.2. It arises from unsanitized input in the SEO Description and SEO Title fields, enabling stored XSS from a Contributor and affecting post pages in the admin area. The documented impact is stored XSS; expl...