WordPress SEO Plugin Security Update Advisory (CVE-2024-2950)

Jul 09 2024

Overview

An update addressing vulnerabilities in the WordPress SEO plugin has been released. Users of the affected version are advised to update to the latest version.

Affected Products

WordPress BoldGrid Easy SEO Version: ~ 1.6.14 (inclusive)

Resolved Vulnerabilities

Information disclosure via meta information (og:description) allows unauthenticated attackers to view the first 130 characters of password-protected posts (CVE-2024-2950)

Vulnerability Patches

Vulnerability Patches have been made available in the latest update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

WordPress BoldGrid Easy SEO Version: 1.6.15

Referenced Sites

[1] CVE-2024-2950 Detail

https://nvd.nist.gov/vuln/detail/CVE-2024-2950

[2] BoldGrid Easy SEO – Simple and Effective SEO <= 1.6.14 – Information Exposure

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/boldgrid-easy-seo/boldgrid-easy-seo-simple-and-effective-seo-1614-information-exposure

WordPress SEO Plugin Security Update Advisory (CVE-2024-2950)

GeoServer and GeoTools Security Update Advisory (CVE-2024-36401)

DELL Family (Client BIOS, Data Protection, Telemetry Dashboard) Security Update Advisory

Tags:

GeoServer and GeoTools Security Update Advisory (CVE-2024-36401)

DELL Family (Client BIOS, Data Protection, Telemetry Dashboard) Security Update Advisory