Description

WordPress Plugin Remove Yoast SEO comments is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Remove Yoast SEO comments version 1.0.4 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.0.5 or latest

References

https://www.jitbit.com/alexblog/256-targetblank---the-most-underestimated-vulnerability-ever/

https://core.trac.wordpress.org/ticket/36809

https://wordpress.org/plugins/remove-yoast-seo-comments/changelog/

Related Vulnerabilities

WordPress Plugin Responsive Poll Security Bypass (1.3.4)

Java Unspesificed Vulnerability (CVE-2018-2941)

WordPress Plugin Easy PayPal Events Cross-Site Scripting (1.1.1)

Jenkins Missing Authorization Vulnerability (CVE-2021-21688)

WordPress Plugin Elementor Website Builder Cross-Site Scripting (2.7.5)

Severity

High

Tags

Missing Update