XSS Vulnerability Patched In SEOPress Affects 100,000 Sites
https://www.wordfence.comA vulnerability was recently discovered in the SEOPress WordPress plugin installed on over 100,000 sites. This flaw made it possible for an attacker to inject arbitrary web scripts on a vulnerable site which would execute anytime a user accessed the “All Posts” page.
We recommend that WordPress users immediately update to the latest version available, which is version 5.0.4 at the time of this publication.