Vulnerabilities > Yoast > Yoast SEO > 11.6

DATE CVE VULNERABILITY TITLE RISK
2023-11-30 CVE-2023-40680 Cross-site Scripting vulnerability in Yoast SEO
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Team Yoast Yoast SEO allows Stored XSS.This issue affects Yoast SEO: from n/a through 21.0.
network
low complexity
yoast CWE-79
4.8
4.8
2023-08-23 CVE-2023-32300 Cross-site Scripting vulnerability in Yoast SEO
Unauth.
network
low complexity
yoast CWE-79
6.1
6.1
2023-05-28 CVE-2023-28785 Cross-site Scripting vulnerability in Yoast SEO
Auth.
network
low complexity
yoast CWE-79
5.4
5.4
2019-07-09 CVE-2019-13478 Cross-site Scripting vulnerability in Yoast SEO
The Yoast SEO plugin before 11.6-RC5 for WordPress does not properly restrict unfiltered HTML in term descriptions.
network
low complexity
yoast CWE-79
critical
 9.8
9.8