Fortinet Discovers WordPress All-in-One SEO Pack Plugin Cross-Site Scripting Vulnerability
Summary
Fortinet's FortiGuard Labs has discovered a Cross-Site Scripting (XSS) vulnerability in the WordPress All-in-One SEO Pack plugin.
The All-in-One SEO Pack plugin is one of the most downloaded plugins for WordPress (almost 30 million downloads). It can automatically optimize your WordPress blog site for SEO (Search Engine Optimization).
The vulnerability exists due to insufficient sanitization of config file imports. It can be exploited to launch XSS attack.
Solutions
FortiGuard Labs released the following FortiGate IPS signature which covers this specific vulnerability:WordPress.All-in-One.SEO.Pack.Plugin.XSS
Released May 04, 2016
FortiWeb can cover this specific vulnerability with following signatures:
Cross Site Scripting 010000000
Cross Site Scripting (Extended) 020000000
Users should apply the solution provided by the vendor.
Additional Information
The vulnerability was fixed in version 2.3.5.Â