Yoast SEO Plugin XSS Flaw Exposes 5 Million+ WordPress Websites to Attack | allinfosecnews.com

May 7, 2024, 12:38 p.m. | Guru Baran

Cyber Security News cybersecuritynews.com

A critical cross-site scripting (XSS) vulnerability has been discovered in the popular Yoast SEO WordPress plugin, potentially putting over 5 million websites at risk of compromise. The flaw was found by security researcher Bassem Essam and reported via the Wordfence Bug Bounty Program. The reflected XSS vulnerability exists in all Yoast SEO versions up to […]

The post Yoast SEO Plugin XSS Flaw Exposes 5 Million+ WordPress Websites to Attack appeared first on Cyber Security News.

attack bounty bug bug bounty bug bounty program compromise critical cross-site cyber security flaw found plugin popular program reflected xss researcher risk scripting security security researcher seo vulnerability websites wordfence wordpress wordpress plugin xss xss flaw

More from cybersecuritynews.com / Cyber Security News

Cyber Security News Weekly Round-Up (Vulnerabilities, Cyber Attacks, Threats & New Stories) an hour ago | cybersecuritynews.com

attack attacks attack vectors breaches +30

LATRODECTUS Loader Getting Popular Among Cybercriminals, Is It Replacing ICEDID! 12 hours ago | cybersecuritynews.com

bypass code cybercriminals cyber security +26

30+ Tesla Cars Hacked Using Third-Party Software 1 day, 23 hours ago | cybersecuritynews.com

access cars collect cyber security +23

How to Use Threat Intelligence Feeds for SOC/DFIR Teams 1 day, 23 hours ago | cybersecuritynews.com

block can compromise cyber security +28

YARA, the Malware Researchers Toolbox Evolved 2 days, 2 hours ago | cybersecuritynews.com

big bugs can cyber security +13

SugarGh0st RAT Attacking Organizations & Individuals in AI Research 2 days, 4 hours ago | cybersecuritynews.com

access ai research attack businesses +21

New Cyber Attack Targeting Facebook Business Accounts 2 days, 4 hours ago | cybersecuritynews.com

accounts ads attack business +28

CISA Reveals Guidance For Implementation of Encrypted DNS Protocols 2 days, 7 hours ago | cybersecuritynews.com

advice agency budget cisa +23

Two Brothers Arrested for Attacking Blockchain & Stealing $25M 2 days, 8 hours ago | cybersecuritynews.com

arrested blockchain boston charged +17

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Associate Vulnerability Management Specialist

@ Diebold Nixdorf | Hyderabad, Telangana, India

View on infosec-jobs.com

Cybersecurity Architect, Infrastructure & Technical Security

@ KCB Group | Kenya

View on infosec-jobs.com

Security Analyst SOC (m/w/d)

@ Deutsche Telekom | Bonn, Deutschland

View on infosec-jobs.com