First published: Sun May 28 2023(Updated: )
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Yoast Yoast SEO: Local plugin <= 14.9 versions.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
Yoast Yoast Seo | <=14.9 |
Update to 15.0 or a higher version.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2023-28785 is classified as medium.
The affected software of CVE-2023-28785 is Yoast Yoast SEO: Local plugin version <= 14.9.
We do not provide information on how to exploit vulnerabilities. It is important to only use this knowledge for defensive purposes.
To fix CVE-2023-28785, update Yoast Yoast SEO: Local plugin to a version beyond 14.9.
You can find more information about CVE-2023-28785 at the following link: [CVE-2023-28785](https://patchstack.com/database/vulnerability/wpseo-local/wordpress-yoast-seo-local-plugin-14-9-cross-site-scripting-xss-vulnerability?_s_id=cve).