Seo Plugin By Squirrly Seo@* Security Vulnerabilities and Issues — Seo Plugin By Squirrly Seo@* CVE List

Lucene search

SquirrlySeo Plugin By Squirrly Seo*

13 matches found

CVE•added 2022/03/21 7:15 p.m.•74 views

CVE-2021-25019

The SEO Plugin by Squirrly SEO WordPress plugin before 11.1.12 does not escape the type parameter before outputting it back in an attribute in an admin page, leading to a Reflected Cross-Site Scripting

6.1CVSS6AI score0.00273EPSS

Web

CVE•added 2024/08/18 10:15 p.m.•74 views

CVE-2024-43286

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Squirrly SEO Plugin by Squirrly SEO.This issue affects SEO Plugin by Squirrly SEO: from n/a through 12.3.19.

8.8CVSS8.9AI score0.0012EPSS

CVE•added 2024/07/20 9:15 a.m.•69 views

CVE-2024-6497

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘url’ parameter in all versions up to, and including, 12.3.19 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Contributor-lev...

8.8CVSS7.4AI score0.15917EPSS

CVE•added 2022/11/28 8:15 p.m.•55 views

CVE-2022-38140

Auth. (contributor+) Arbitrary File Upload in SEO Plugin by Squirrly SEO plugin

8.8CVSS8.2AI score0.00265EPSS

CVE•added 2024/03/25 12:15 p.m.•55 views

CVE-2022-44626

Missing Authorization vulnerability in Squirrly SEO Plugin by Squirrly SEO.This issue affects SEO Plugin by Squirrly SEO: from n/a through 12.1.20.

6.3CVSS6.3AI score0.00056EPSS

CVE•added 2025/03/03 9:15 a.m.•51 views

CVE-2025-24654

Missing Authorization vulnerability in SEO Squirrly SEO Plugin by Squirrly SEO.This issue affects SEO Plugin by Squirrly SEO: from n/a through 12.4.05.

8.8CVSS7AI score0.00053EPSS

CVE•added 2024/03/27 1:15 p.m.•50 views

CVE-2024-29790

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Squirrly SEO Plugin by Squirrly SEO allows Reflected XSS.This issue affects SEO Plugin by Squirrly SEO: from n/a through 12.3.16.

7.1CVSS7.1AI score0.00269EPSS

CVE•added 2024/11/20 6:15 a.m.•49 views

CVE-2024-10515

In the process of testing the SEO Plugin by Squirrly SEO WordPress plugin before 12.3.21, a vulnerability was found that allows you to implement Stored XSS on behalf of the editor by embedding malicious script, which entails account takeover backdoor

3.5CVSS3.6AI score0.00057EPSS

CVE•added 2025/03/07 11:15 a.m.•47 views

CVE-2025-1768

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to blind SQL Injection via the 'search' parameter in all versions up to, and including, 12.4.05 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it p...

6.5CVSS7.5AI score0.00105EPSS

CVE•added 2023/05/08 3:15 p.m.•41 views

CVE-2022-45065

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Squirrly SEO Plugin by Squirrly SEO plugin

7.1CVSS5.9AI score0.00083EPSS

CVE•added 2024/02/05 10:16 p.m.•41 views

CVE-2024-0597

The SEO Plugin by Squirrly SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via admin settings in all versions up to and including 12.3.15 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with administrator-level pe...

4.8CVSS5.3AI score0.00164EPSS

CVE•added 2025/03/27 4:15 p.m.•41 views

CVE-2025-22783

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in SEO Squirrly SEO Plugin by Squirrly SEO allows SQL Injection.This issue affects SEO Plugin by Squirrly SEO: from n/a through 12.4.03.

8.8CVSS8.8AI score0.00488EPSS

Web

CVE•added 2023/12/28 12:15 p.m.•31 views

CVE-2023-50854

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Squirrly Squirrly SEO - Advanced Pack.This issue affects Squirrly SEO - Advanced Pack: from n/a before 2.4.02.

7.6CVSS7.6AI score0.00139EPSS