ByteOS Network

SEO Tools

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-30984

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-7.1||HIGH

EPSS-0.18% / 39.94%

7 Day CHG~0.00%

Published-15 Apr, 2025 | 21:53

Updated-28 Apr, 2026 | 16:12

WordPress SEO Tools plugin <= 4.0.7 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Dzynit SEO Tools seo-automatic-seo-tools allows Reflected XSS.This issue affects SEO Tools: from n/a through <= 4.0.7.

Vendor-Dzynit

Product-SEO Tools

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

CVE-2024-13853

Assigner-WPScan

View Details

Assigner-WPScan

CVSS Score-6.1||MEDIUM

EPSS-1.19% / 78.98%

7 Day CHG~0.00%

Published-11 Mar, 2025 | 06:00

Updated-21 May, 2025 | 19:33

SEO Tools <= 4.0.7 - Reflected XSS

The SEO Tools WordPress plugin through 4.0.7 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin

Vendor-zynit Unknown

Product-seo_tools SEO Tools

CWE ID-CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')