Yoast SEO Plugin XSS Flaw Exposes 5 Million+ WordPress Websites to Attack | allinfosecnews.com

May 7, 2024, 12:38 p.m. | Guru Baran

Cyber Security News cybersecuritynews.com

A critical cross-site scripting (XSS) vulnerability has been discovered in the popular Yoast SEO WordPress plugin, potentially putting over 5 million websites at risk of compromise. The flaw was found by security researcher Bassem Essam and reported via the Wordfence Bug Bounty Program. The reflected XSS vulnerability exists in all Yoast SEO versions up to […]

The post Yoast SEO Plugin XSS Flaw Exposes 5 Million+ WordPress Websites to Attack appeared first on Cyber Security News.

attack bounty bug bug bounty bug bounty program compromise critical cross-site cyber security flaw found plugin popular program reflected xss researcher risk scripting security security researcher seo vulnerability websites wordfence wordpress wordpress plugin xss xss flaw

More from cybersecuritynews.com / Cyber Security News

ELLIO and ntop partnership to boost high-speed network traffic monitoring with real-time data on opportunistic … 1 day, 19 hours ago | cybersecuritynews.com

applications attacks botnets commercial +17

Windows-based AllaKore Malware Abuses Azure Cloud for C2 Infrastructure 1 day, 20 hours ago | cybersecuritynews.com

accounts azure azure cloud bank +27

Hackers Impersonating As Fake Toll Payment Processor Across The U.S. 1 day, 20 hours ago | cybersecuritynews.com

cyber security cybersecurity e-zpass e-zpass fraud +21

Hackers Compromised 600,000 SOHO Routers Within 72 Hours For Botnet 1 day, 20 hours ago | cybersecuritynews.com

72 hours attack attacks botnet +26

Telegram Know For Secure Messaging, Now Became A Tool For Cybercriminals 1 day, 22 hours ago | cybersecuritynews.com

abuse creators cybercriminals cyber security +12

Microsoft Observed Huge-Surge In Attacks Targeting Internet-Exposed OT Devices In WWS 2 days ago | cybersecuritynews.com

attacks cyberattacks cyberav3ngers cyber security +24

RedTail Cryptominer Exploiting Palo Alto Networks Firewall Zero-day Flaw 2 days, 5 hours ago | cybersecuritynews.com

alto arbitrary code attackers code +33

BBC Data Breach: Hackers Access Cloud-Based Storage Service 2 days, 6 hours ago | cybersecuritynews.com

access bbc breach cloud +25

New Meterpreter Backdoor Hides Malicious Codes Within the Image 2 days, 20 hours ago | cybersecuritynews.com

any.run backdoor code conceal +13

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland

View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City

View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL

View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US

View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia

View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)

View on infosec-jobs.com