3 matches found
CVE-2021-24153
A Stored Cross-Site Scripting vulnerability was discovered in the Yoast SEO WordPress plugin before 3.4.1, which had built-in blacklist filters which were blacklisting Parenthesis as well as several functions such as alert but bypasses were found...
CVE-2021-24153
Summary: CVE-2021-24153 affects the WordPress Yoast SEO plugin prior to 3.4.1. The vulnerability is a Stored Cross-Site Scripting (XSS) issue where built-in blacklist filters (e.g., parentheses, alert) were bypassed. Documents consistently describe this as an authenticated XSS risk. What’s affect...
CVE-2021-24153 Yoast SEO < 3.4.1 - Authenticated Stored Cross-Site Scripting (XSS)
A Stored Cross-Site Scripting vulnerability was discovered in the Yoast SEO WordPress plugin before 3.4.1, which had built-in blacklist filters which were blacklisting Parenthesis as well as several functions such as alert but bypasses were found...