Update Your All In One SEO Pack WordPress Plugin Now

The Sucuri Blog issued a notice that a popular SEO plugin for WordPress web sites had a major security vulnerability. The plugin name is the “All in One SEO Pack” and the fix is easy, just make sure to update the plugin immediately. The vulnerability opened up WordPress blogs that used the plugin, that had […]

Chat with SearchBot

The Sucuri Blog issued a notice that a popular SEO plugin for WordPress web sites had a major security vulnerability.

The plugin name is the “All in One SEO Pack” and the fix is easy, just make sure to update the plugin immediately.

The vulnerability opened up WordPress blogs that used the plugin, that had subscribers, authors and non-admin users logging in to wp-admin. The code in the plugin had two security issues that enabled hackers to:

(1) Conduct privilege escalation

(2) Cross site scripting (XSS) attacks

Again, the fix is simple, just upgrade to the latest version available for this plugin.


About the author

Barry Schwartz
Staff
Barry Schwartz is a Contributing Editor to Search Engine Land and a member of the programming team for SMX events. He owns RustyBrick, a NY based web consulting firm. He also runs Search Engine Roundtable, a popular search blog on very advanced SEM topics. Barry can be followed on Twitter here.

Get the must-read newsletter for search marketers.