Description
WordPress Plugin All in One SEO-Best WordPress SEO-Easily Improve SEO Rankings & Increase Traffic is prone to an information disclosure vulnerability. Attackers can exploit this issue to obtain sensitive information that may help in launching further attacks. WordPress Plugin All in One SEO-Best WordPress SEO-Easily Improve SEO Rankings & Increase Traffic version 2.2.5.1 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.2.6 or latest
References
http://jvndb.jvn.jp/en/contents/2015/JVNDB-2015-000046.html
http://semperfiwebdesign.com/blog/all-in-one-seo-pack/all-in-one-seo-pack-release-history/
Related Vulnerabilities
WebLogic CVE-2019-2658 Vulnerability (CVE-2019-2658)
WordPress Plugin wpForo Forum Cross-Site Scripting (1.4.11)
WordPress Plugin Token Manager 'tid' Parameter Multiple Cross-Site Scripting Vulnerabilities (1.0.2)
MySQL CVE-2019-2741 Vulnerability (CVE-2019-2741)
Moodle Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2013-5674)