返回 CVE 瀏覽器

CVE-2013-5988

MEDIUM

6.1

CVSS Severity Score

EPSS Score0.0340%

EPSS Percentile17.04th

Published2020年2月11日

Last Modified2024年11月21日

Vulnerability Description

A Cross-site Scripting (XSS) vulnerability exists in the All in One SEO Pack plugin before 2.0.3.1 for WordPress via the Search parameter.

Affected Platforms (CPE)

📦

Semperplugins

All In One Seo Pack

>= 1.3.6.4 and <= 1.6.15.2

📦

Semperplugins

All In One Seo Pack

>= 2.0 and < 2.0.3.1

References & Advisories

🔗 https://packetstormsecurity.com/files/cve/CVE-2013-5988

🔗 https://www.securityfocus.com/archive/1/528962

🔗 https://packetstormsecurity.com/files/cve/CVE-2013-5988

🔗 https://www.securityfocus.com/archive/1/528962

相關漏洞威脅

CVE-2019-165205.4

The all-in-one-seo-pack plugin before 3.2.7 for WordPress (aka All in One SEO Pack) is susceptible to Stored XSS due to improper e...

CVE-2020-359465.4

An issue was discovered in the All in One SEO Pack plugin before 3.6.2 for WordPress. The SEO Description and Title fields are vul...

CVE-2015-09025.0

The Semper Fi All in One SEO Pack plugin before 2.2.6 for WordPress does not consider the presence of password protection during g...

CVE-2013-233310.0

Unspecified vulnerability in HP Storage Data Protector 6.20, 6.21, 7.00, and 7.01 allows remote attackers to execute arbitrary cod...