WordPress All In One SEO Pack plugin zero-day vulnerability Updated on September 23, 2020 by Jeff Matson 0 Minutes, 34 Seconds to Read It has come to our attention that a zero-day vulnerability has been discovered within the All In One SEO Pack plugin which lets a non-privileged user either modify SEO data in posts or inject javascript into an administrators panel to execute malicious code. The developer has released a patch for this vulnerability which resolves the issue with a simple update of the plugin to version 2.1.6. What if I am affected? If you are affected by the vulnerability in the All In One SEO Pack plugin, update to version 2.1.6 immediately. After doing so, we recommend that you run Sucuri SiteCheck as well to ensure that there is not any compromised code running within your WordPress site. Share this Article Related Articles Schedule Social Media Posts With Buffer The Ultimate SEO Checklist For Ranking in 2025 How to Stop Search Engines from Crawling your Website URL Structure for SEO Working with the product SEO tab in PrestaShop 1.6 Add a Website in Seo Panel Headings and Subheadings: How to Use Them on Your Site SEO Markup Hierarchy Google Penguin and the impact on SEO Setting your Homepage Meta in WordPress with All in One SEO
