Fortinet Discovers WordPress All-in-One SEO Pack Plugin Cross-Site Scripting Vulnerability
Fortinet's FortiGuard Labs has discovered a Cross-Site Scripting (XSS) vulnerability in the WordPress All-in-One SEO Pack plugin.
The All-in-One SEO Pack plugin is one of the most downloaded plugins for WordPress (almost 30 million downloads). It can automatically optimize your WordPress blog site for SEO (Search Engine Optimization).
The vulnerability exists due to insufficient sanitization of config file imports. It can be exploited to launch XSS attack.
SolutionsFortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:
Released May 03, 2016
FortiWeb can cover this specific vulnerability with following signatures:
Cross Site Scripting 010000000
Cross Site Scripting (Extended) 020000000
Users should apply the solution provided by the vendor.
The vulnerability was fixed in version 2.3.5.
This vulnerability was discovered by Zhouyuan Yang of Fortinet's FortiGuard Labs.