Wordpress The Semper Fi All in One SEO Pack Plugin Information Disclosure Vulnerability

WordPress is the WordPress Software Foundation's set of blogging platform developed using the PHP language, the platform supports PHP and MySQL servers to set up a personal blog site.WordPress The Semper Fi All in One SEO Pack plugin is a wordpress-based SEO plugin. WordPress The Semper Fi All in...

Design/Logic Flaw

The Semper Fi All in One SEO Pack plugin before 2.2.6 for WordPress does not consider the presence of password protection during generation of the Meta Description field, which allows remote attackers to obtain sensitive information by reading HTML source code...

CVE-2015-0902

The CVE-2015-0902 entry concerns the WordPress plugin All in One SEO Pack (pre-2.2.6). The underlying issue is that the plugin does not consider password protection when generating the Meta Description, enabling remote attackers to read HTML source and disclose sensitive information. Affected sof...

CVE-2015-0902

The Semper Fi All in One SEO Pack plugin before 2.2.6 for WordPress does not consider the presence of password protection during generation of the Meta Description field, which allows remote attackers to obtain sensitive information by reading HTML source code...

WordPress All-In-One SEO Pack Vulnerabilities Patched

A web design firm has patched two privilege escalation vulnerabilities that could have led to cross-site scripting attacks in a popular WordPress plugin it manages. If left unpatched, the issue could leave potentially millions of websites vulnerable. The problem exists in old versions of the All ...

WordPress Semper Fi Cross Site Scripting

------------------------------------------------------------------------ Vendor: Semper Fi Web Design http://semperfiwebdesign.com/ Software: All in One SEO Pack Developer: Michael Torbert http://michaeltorbert.com/ Product URL: http://wordpress.org/plugins/all-in-one-seo-pack/ Changelog:...