Hacker News reports that a vulnerability affecting millions of users has been found in industry leading WordPress plugin SEO by Yoast. According to an advisory, all versions of SEO by Yoast prior to 1.7.3.3 are vulnerable to Blind SQL Injection web application flaw. This is considered a critical vulnerability due to the fact that it could seriously compromise your WordPress site. Mohit Kumar of Hacker News explains how the vulnerability works: “Basically in SQLi attack, an attacker inserts a malformed SQL query into an application via client-side input. However, in this scenario, an outside hacker can’t trigger this vulnerability itself because […] The post Popular WordPress Plugin ‘SEO by Yoast’ Vulnerable To Hackers by @mattsouthern appeared first on Search Engine Journal. - Web2024