Welcome to WebmasterWorld Guest from 54.198.134.32

Forum Moderators: rogerd & travelin cat

Message Too Old, No Replies

WordPress Yoast SEO Plugin Serious Vulnerability Fixed

     
9:09 pm on Mar 11, 2015 (gmt 0)

Administrator from GB 

WebmasterWorld Administrator engine is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month Best Post Of The Month

joined:May 9, 2000
posts:24727
votes: 613


Update your Yoast SEO plugin right away to ensure your WordPress site doesn't become a hacked statistic.

A remote unauthenticated attacker could use this vulnerability to execute arbitrary SQL queries on the victim WordPress web site by enticing an authenticated admin, editor or author user to click on a specially crafted link or visit a page they control.

One possible attack scenario would be an attacker adding their own administrative user to the target WordPress site, allowing them to compromise the entire web site. WordPress Yoast SEO Plugin Serious Vulnerability [grahamcluley.com]


link fixed

[edited by: engine at 9:44 am (utc) on Mar 16, 2015]

11:33 pm on Mar 11, 2015 (gmt 0)

Senior Member

WebmasterWorld Senior Member planet13 is a WebmasterWorld Top Contributor of All Time 5+ Year Member Top Contributors Of The Month

joined:June 16, 2010
posts: 3823
votes: 29


Thanks for the heads up!
1:14 pm on Mar 12, 2015 (gmt 0)

Senior Member

WebmasterWorld Senior Member bwnbwn is a WebmasterWorld Top Contributor of All Time 10+ Year Member Top Contributors Of The Month

joined:Oct 25, 2005
posts:3549
votes: 22


The link in the post doesn't work here is the good link
[wptavern.com...]
9:41 pm on Mar 12, 2015 (gmt 0)

Senior Member from US 

WebmasterWorld Senior Member 10+ Year Member

joined:Aug 27, 2003
posts:1597
votes: 0


It auto-updated for those with versions 1.5+
 

Join The Conversation

Moderators and Top Contributors

Hot Threads This Week

Featured Threads

Free SEO Tools

Hire Expert Members