Serious vulnerabilities found in ‘All in One Seo Pack’ – Update it now!

Serious vulnerabilities found in ‘All in One Seo Pack’ – Update it now!
  • By
  • June 2, 2014
  • 0 Comment

Are you or your company using All in one SEO Pack? If yes, you must update it to the latest version as soon as possible. Security firm Sucuri has discovered some serious vulnerabilities in ‘All in One SEO Pack’ which can allow an attacker to modify your site’s meta description, which could harm your website’s search engine ranking negatively.

WordPress_›_All_in_One_SEO_Pack_

 

Sucuri reported “In the first case, a logged-in user, without possessing any kind of administrative privileges (like an author of subscriber), could add or modify certain parameters used by the plugin. It includes the post’s SEO title, description and keyword meta tags.”

Experts at Sucuri also reported that cross-site scripting vulnerability can be exploited by malicious hackers to execute malicious JavaScript code on an administrator’s control panel. This means that a hacker could inject any JavaScript code and do things like creating new admin accounts or leaving some backdoors in your website to conduct even more harmful operations later.

Worldwide more than 70 million websites are using WordPress and about 16 million websites are using All in One SEO pack which make these websites vulnerable to perform DDos attacks or abuse WordPress site until they update their plugin to the latest version which is 2.1.6

Following is the change log provided by All in One SEO Pack’s developers for version 2.1.6

All_in_One_SEO_Pack_Changelog

Images are courtesy of WordPress and Sucuri 

 

Related Articles

  • Setting Conversion Goals for Selling eBooks

    How can you know if your online eBooks store is growing over time, or remaining stagnant? In this day and age, entrepreneurs have access to analytics programs. These are great resources for setting benchmarks, tracking return on investment and monitoring…

  • 5 Major Differences between Dedicated and Shared Hosting

    Dedicated and shared hosting are two main types of hosting services that web owners can opt for. In shared hosting, you are given a restricted amount of space, which is shared on one server with hundreds of other websites. It…

  • Premium Responsive WordPress Themes: 10 Best Eye Catching Theme’s Collection

    Having your blog’s theme fully responsive, is the significant factor to rank well on major search engines. Also, with the rapid increase of usage of smartphones, mobile friendly websites are compulsory without any doubt. Below is a collection of 10…

Written By
Ali Sadiq

Ali is a full time web designer plus web developer. Eager to learn various new and useful web design trends. He is an enthusiast seeker who loves to explore frameworks, tools, plugins and hence love to learn and practice new developments in the entire field.

Leave a Reply

Your email address will not be published. Required fields are marked *