Seo by Rank Math <= 1.0.26 - XSS Issues



Description
The changelog file states "Added some important security fixes", and various variables can be found being HTML escaped in the code changes.

Affects Plugin

fixed in version 1.0.27

References

URL https://plugins.trac.wordpress.org/changeset?reponame=&new=2107762%40seo-by-rank-math&old=2101809%40seo-by-rank-math

Classification

Type XSS
OWASP Top 10 A7: Cross-Site Scripting (XSS)
CWE CWE-79

Miscellaneous

Views 3139
Verified No
WPVDB ID 9350

Timeline

Publicly Published 2019-06-18 (about 1 year ago)
Added 2019-06-18 (about 1 year ago)
Last Updated 2020-05-11 (about 2 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin