3 matches found
CVE-2024-4335 Rank Math SEO with AI Best SEO Tools <= 1.0.217 - Authenticated (Contributor+) Stored Cross-Site Scripting
The Rank Math SEO with AI Best SEO Tools plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘textAlign’ parameter in versions up to, and including, 1.0.217 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...
CVE-2024-4335
CVE-2024-4335: The Rank Math SEO with AI Best SEO Tools WordPress plugin is susceptible to a Stored Cross-Site Scripting (XSS) via the textAlign parameter in versions up to and including 1.0.217. This requires authenticated access at contributor level or higher and can let an attacker inject scri...
WordPress Rank Math SEO Plugin <= 1.0.217 is vulnerable to Cross Site Scripting (XSS)
Software Rank Math SEO Type Plugin Vulnerable versions = 1.0.217 Fixed in 1.0.218 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-4335 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 4aee3e89592a Credits wesley wcraft Required...