Back to CVE Browser

CVE-2013-5988

MEDIUM

6.1

CVSS Severity Score

EPSS Score0.0340%

EPSS Percentile17.04th

PublishedFeb 11, 2020

Last ModifiedNov 21, 2024

Vulnerability Description

A Cross-site Scripting (XSS) vulnerability exists in the All in One SEO Pack plugin before 2.0.3.1 for WordPress via the Search parameter.

Affected Platforms (CPE)

📦

Semperplugins

All In One Seo Pack

>= 1.3.6.4 and <= 1.6.15.2

📦

Semperplugins

All In One Seo Pack

>= 2.0 and < 2.0.3.1

References & Advisories

🔗 https://packetstormsecurity.com/files/cve/CVE-2013-5988

🔗 https://www.securityfocus.com/archive/1/528962

🔗 https://packetstormsecurity.com/files/cve/CVE-2013-5988

🔗 https://www.securityfocus.com/archive/1/528962

Related Vulnerabilities

CVE-2019-165205.4

The all-in-one-seo-pack plugin before 3.2.7 for WordPress (aka All in One SEO Pack) is susceptible to Stored XSS due to improper e...

CVE-2020-359465.4

An issue was discovered in the All in One SEO Pack plugin before 3.6.2 for WordPress. The SEO Description and Title fields are vul...

CVE-2015-09025.0

The Semper Fi All in One SEO Pack plugin before 2.2.6 for WordPress does not consider the presence of password protection during g...

CVE-2013-273310.0

Buffer overflow in Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allows attackers to exec...