Vulnerabilities > Semperplugins

DATE CVE VULNERABILITY TITLE RISK
2021-01-01 CVE-2020-35946 Cross-site Scripting vulnerability in ONE SEO Pack
An issue was discovered in the All in One SEO Pack plugin before 3.6.2 for WordPress.
3.5
2020-02-11 CVE-2013-5988 Cross-site Scripting vulnerability in ONE SEO Pack
A Cross-site Scripting (XSS) vulnerability exists in the All in One SEO Pack plugin before 2.0.3.1 for WordPress via the Search parameter.
4.3
2019-10-16 CVE-2019-16520 Cross-site Scripting vulnerability in ONE SEO Pack
The all-in-one-seo-pack plugin before 3.2.7 for WordPress (aka All in One SEO Pack) is susceptible to Stored XSS due to improper encoding of the SEO-specific description for posts provided by the plugin via unsafe placeholder replacement.
3.5