Vulnerabilities > Aioseo > ALL IN ONE SEO > 4.1.6

DATE CVE VULNERABILITY TITLE RISK
2023-02-24 CVE-2023-0585 Unspecified vulnerability in Aioseo ALL in ONE SEO
The All in One SEO Pack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 4.2.9 due to insufficient input sanitization and output escaping.
network
low complexity
aioseo
4.8
4.8
2023-02-24 CVE-2023-0586 Unspecified vulnerability in Aioseo ALL in ONE SEO
The All in One SEO Pack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 4.2.9 due to insufficient input sanitization and output escaping.
network
low complexity
aioseo
5.4
5.4
2022-11-08 CVE-2022-42494 Server-Side Request Forgery (SSRF) vulnerability in Aioseo ALL in ONE SEO
Server Side Request Forgery (SSRF) vulnerability in All in One SEO Pro plugin <= 4.2.5.1 on WordPress.
network
low complexity
aioseo CWE-918
6.5
6.5
2022-09-09 CVE-2022-38093 Unspecified vulnerability in Aioseo ALL in ONE SEO
Multiple Cross-Site Request Forgery (CSRF) vulnerabilities in All in One SEO plugin <= 4.2.3.1 at WordPress.
network
low complexity
aioseo
8.8
8.8