Rainbowgeek Seopress – On-site Seo & Analytics
4 CVEs affecting Rainbowgeek Seopress – On-site Seo & Analytics. Latest disclosed: 2024-10-02. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-1168 | Medium | 6.4 | 2024-06-20 | The SEOPress – On-site SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's social image URL in all versions up to, and inclu… |
CVE-2024-1134 | Medium | 6.4 | 2024-05-24 | The SEOPress – On-site SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the SEO title and description parameters as well as others in… |
CVE-2024-2165 | Medium | 6.4 | 2024-04-09 | The SEOPress – On-site SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the image alt parameter in all versions up to, and including… |
CVE-2024-9225 | Medium | 6.1 | 2024-10-02 | The SEOPress – On-site SEO plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appr… |