WordPress SEO Tools Plugin 漏洞列表

共找到 1 个与 WordPress SEO Tools Plugin 相关的漏洞

📅 加载漏洞趋势中...

CVE-2024-13853: WordPress SEO Tools Plugin 4.0.7 - Cross-Site Scripting POC

日期: 2025-08-01 | 影响软件: WordPress SEO Tools Plugin

The SEO Tools WordPress plugin through version 4.0.7 contains a reflected cross-site scripting vulnerability. The plugin does not properly sanitize and escape the 'src' parameter in the rssread.php file before outputting it back in the page, which could allow attackers to execute arbitrary JavaScript code in a victim's browser.