All In One SEO Pack
Syed Balkhi
Developer
4.9.8
Latest version
3,000,000
Installations
No date
Last updated
Vulnerability history
0 present
24 patched
4 Mitigation rules
- Authenticated (Contributor+) Sensitive Information Exposure vulnerability<= 4.9.719/05/2026
- Contributor+ Stored XSS vulnerability< 4.6.1.130/01/2026
- WordPress All in One SEO - Powerful SEO Plugin to Boost SEO Rankings & Increase Traffic plugin <= 4.9.2 - Missing Authorization to Authenticated (Contributor+) AI Access Token and Credit Disclosure vulnerability<= 4.9.215/01/2026
- SQL Injection vulnerability<= 4.9.106/12/2025
- Sensitive Data Exposure vulnerability<= 4.8.6.126/11/2025
- Missing Authorization to Authenticated (Contributor+) Arbitrary Media Deletion vulnerability<= 4.8.914/11/2025
- Sensitive Data Exposure Vulnerability<= 4.8.7.122/09/2025
- Broken Access Control Vulnerability<= 4.8.7.122/09/2025
- Authenticated (Contributor+) Stored Cross-Site Scripting via Post Meta Description and Canonical URL vulnerability<= 4.8.1.119/05/2025
- Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode vulnerability<= 4.6.029/04/2024
- Authenticated (Administrator+) Stored Cross-Site Scripting vulnerability<= 4.2.927/02/2023
- Authenticated (Contributor+) Stored Cross-Site Scripting vulnerability<= 4.2.927/02/2023
- Multiple Cross-Site Request Forgery (CSRF) vulnerabilities<= 4.2.3.105/09/2022
- Authenticated Privilege Escalation vulnerability<= 4.1.5.214/12/2021
- Authenticated SQL Injection (SQLi) vulnerability<= 4.1.5.214/12/2021
- Authenticated Remote Code Execution (RCE) vulnerability<= 4.1.0.109/05/2021
- Authenticated Stored Cross-Site Scripting (XSS) vulnerability<= 3.6.116/07/2020
- Stored Cross Site Scripting<= 2.3.6.119/07/2016
- Cross Site Scripting<= 2.3.719/07/2016
- Persistent XSS<= 2.3.6.111/07/2016
- Cross Site Scripting<= 2.2.6.109/09/2015
- Cross Site Scripting<= 2.1.515/05/2015
- Privilege Escalation<= 2.1.515/05/2015
- Information Management<= 2.2.508/01/2015