Description
WordPress Plugin Yoast SEO is prone to an information disclosure vulnerability. Attackers can exploit this issue to disclose plugin settings and post metadata relative to focus and terms keywords. WordPress Plugin Yoast SEO version 3.2.4 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.2.5 or latest
References
https://www.wordfence.com/blog/2016/05/yoast-seo-vulnerability/
https://www.pluginvulnerabilities.com/2016/05/11/information-disclosure-vulnerability-in-yoast-seo/
Related Vulnerabilities
WordPress 6.1.x Multiple Vulnerabilities (6.1 - 6.1.3)
Ruby on Rails Missing Encryption of Sensitive Data Vulnerability (CVE-2010-3299)
Apache Tomcat Other Vulnerability (CVE-2015-5346)
XWiki Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2023-46243)
WordPress Plugin Classified Listing Pro & Directory Cross-Site Scripting (2.0.19)