|
Description
|
|
Two vulnerabilities have been reported in the WordPress SEO by Yoast plugin for WordPress, which can be exploited by malicious users to conduct SQL injection attacks and by malicious people to conduct cross-site request forgery attacks.
1) Input passed via the "orderby" GET parameter to wp-admin/admin.php (when "page" is set to "wpseo_bulk-editor") is not properly sanitised before being used in a SQL query. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code.
Successful exploitation requires privileges to access the bulk editor.
2) The plugin allows users to perform certain actions via HTTP requests without performing proper validity checks to verify the requests. This can be exploited to perform certain unspecified actions when a logged-in administrative user visits a specially crafted web page.
The vulnerabilities are reported in versions prior to 1.7.4.
|
