Yoast XSS Flaw


by Artie Kaye

The search engine optimization plugin for WordPress was discovered to have a cross-site scripting flaw in versions up to and including 22.5. The flaw has since been patched out of version 22.6. The vulnerability could allow the creation of admin accounts or of backdoors into affected pages. The plugin is present on over 5 million pages. It is highly recommended to update to the latest release.

Transparency statement: Wyo Support News does not use the Yoast plugin.

Third-Party references:

Click the links below to learn more details. (Opens in a new tab/window.)