Vulnerabilidades em yoast
13 resultadosCVE-2024-4041MEDIUMYoast SEO <= 22.5 - Reflected Cross-Site ScriptingEPSS 0.8%CVE-2024-4984MEDIUMYoast SEO <= 22.6 - Authenticated (Contributor+) Stored Cross-Site ScriptingEPSS 0.6%CVE-2023-28780MEDIUMWordPress Yoast SEO: Local Plugin <= 14.8 is vulnerable to Cross Site Request Forgery (CSRF)EPSS 0.4%CVE-2023-32300HIGHWordPress Yoast SEO: Local Plugin <= 14.8 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2023-28785MEDIUMWordPress Yoast SEO: Local Plugin <= 14.9 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2023-28775MEDIUMWordPress Yoast SEO Premium plugin <= 20.4 - Unauthenticated Zapier API Key Reset vulnerabilityEPSS 0.4%CVE-2025-14481MEDIUMYoast SEO <= 26.5 - Insecure Direct Object Reference to Authenticated (Contributor+) Sensitive Information Exposure via 'post_id' ParameterEPSS 0.3%CVE-2019-25314MEDIUMDuplicate-Post 3.2.3 - Persistent Cross-Site ScriptingEPSS 0.2%CVE-2026-3427MEDIUMYoast SEO <= 27.1.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'jsonText' Block AttributeEPSS 0.2%CVE-2026-1293MEDIUMYoast SEO <= 26.8 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'yoast-schema' Block AttributeEPSS 0.2%CVE-2026-1217MEDIUMYoast Duplicate Post <= 4.5 - Authenticated (Contributor+) Missing Authorization to Arbitrary Post Duplication and OverwriteEPSS 0.2%CVE-2026-53740MEDIUMYoast Duplicate Post through 4.6 Stored Cross-Site Scripting via Scheduled Republish NoticeEPSS 0.1%CVE-2026-53739MEDIUMYoast Duplicate Post through 4.6 Cross-Site Request Forgery via duplicate_post_dismiss_noticeEPSS 0.1%