Home / exploits Yoast SEO 1.14.15 Cross Site Scripting
Posted on 02 September 2013
Discussion: Yoast SEO Plugin v1.14.15 has a xss vulnerability due to lack of search sanitation. Exploit: This can be exploited with a browser and is usually executed inside the search parameter of the website. Proof of concept: http://5linx.com/?s="><script>alert(document.cookie);</script>
