CVE-2024-3368 - Vulnerability Details - OpenCVE

Description

The All in One SEO WordPress plugin before 4.6.1.1 does not validate and escape some of its Post fields before outputting them back, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks

Published: 2024-05-20

Score: 6.1 Medium

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

No analysis available yet.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

Unknown

All in One SEO

unaffected

Version	Status	Constraints
`0`	affected	< 4.6.1.1

Configuration 1 [-]

cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:*

No data.

No data available yet.

Remediation

No remediation available yet.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact Low

Integrity Impact Low

Availability Impact None

User Interaction Required

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00369.

Exploitation poc

Automatable no

Technical Impact partial

References

Link	Providers
https://wpscan.com/vulnerability/ab78b1a5-e28c-406b-baaf-6d53017f9328/

History

Wed, 21 May 2025 19:15:00 +0000

Type	Values Removed	Values Added
Weaknesses		CWE-79

Fri, 14 Mar 2025 18:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Aioseo Aioseo all In One Seo
CPEs		cpe:2.3:a:aioseo:all_in_one_seo::::::wordpress::*
Vendors & Products		Aioseo Aioseo all In One Seo
Metrics		cvssV3_1 `{'score': 6.1, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N'}` ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Subscriptions

Aioseo All In One Seo

MITRE

Status: PUBLISHED

Assigner: WPScan

Published: 2024-05-20T06:00:01.083Z

Updated: 2025-03-14T17:20:36.410Z

Reserved: 2024-04-05T08:51:06.596Z

Link: CVE-2024-3368

Vulnrichment

Updated: 2024-08-01T20:05:08.481Z

NVD

Status : Analyzed

Published: 2024-05-20T06:15:08.527

Modified: 2026-06-17T07:44:08.620

Link: CVE-2024-3368

Redhat

No data.

OpenCVE Enrichment

No data.

Weaknesses

CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2024-3368", "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "state": "PUBLISHED", "assignerShortName": "WPScan", "dateReserved": "2024-04-05T08:51:06.596Z", "datePublished": "2024-05-20T06:00:01.083Z", "dateUpdated": "2025-03-14T17:20:36.410Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan", "dateUpdated": "2024-05-20T06:00:01.083Z"}, "title": "All in One SEO < 4.6.1.1 - Contributor+ Stored XSS", "problemTypes": [{"descriptions": [{"description": "CWE-79 Cross-Site Scripting (XSS)", "lang": "en", "type": "CWE"}]}], "affected": [{"vendor": "Unknown", "product": "All in One SEO ", "versions": [{"status": "affected", "versionType": "semver", "version": "0", "lessThan": "4.6.1.1"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The All in One SEO WordPress plugin before 4.6.1.1 does not validate and escape some of its Post fields before outputting them back, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks"}], "references": [{"url": "https://wpscan.com/vulnerability/ab78b1a5-e28c-406b-baaf-6d53017f9328/", "tags": ["exploit", "vdb-entry", "technical-description"]}], "credits": [{"lang": "en", "value": "Dmtirii Ignatyev", "type": "finder"}, {"lang": "en", "value": "WPScan", "type": "coordinator"}], "source": {"discovery": "EXTERNAL"}, "x_generator": {"engine": "WPScan CVE Generator"}}, "adp": [{"affected": [{"vendor": "aioseo", "product": "all_in_one_seo", "cpes": ["cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:*"], "defaultStatus": "unknown", "versions": [{"version": "0", "status": "affected", "lessThan": "4.6.1.1", "versionType": "custom"}]}], "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"timestamp": "2024-05-20T11:43:43.506112Z", "id": "CVE-2024-3368", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-03-14T17:20:36.410Z"}}, {"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T20:05:08.481Z"}, "title": "CVE Program Container", "references": [{"url": "https://wpscan.com/vulnerability/ab78b1a5-e28c-406b-baaf-6d53017f9328/", "tags": ["exploit", "vdb-entry", "technical-description", "x_transferred"]}]}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "https://wpscan.com/vulnerability/ab78b1a5-e28c-406b-baaf-6d53017f9328/", "tags": ["exploit", "vdb-entry", "technical-description", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-01T20:05:08.481Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"cvssV3_1": {"scope": "CHANGED", "version": "3.1", "baseScore": 6.1, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "REQUIRED", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "LOW"}}, {"other": {"type": "ssvc", "content": {"id": "CVE-2024-3368", "role": "CISA Coordinator", "options": [{"Exploitation": "poc"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-05-20T11:43:43.506112Z"}}}], "affected": [{"cpes": ["cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:*"], "vendor": "aioseo", "product": "all_in_one_seo", "versions": [{"status": "affected", "version": "0", "lessThan": "4.6.1.1", "versionType": "custom"}], "defaultStatus": "unknown"}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-05-20T11:44:40.764Z"}}], "cna": {"title": "All in One SEO < 4.6.1.1 - Contributor+ Stored XSS", "source": {"discovery": "EXTERNAL"}, "credits": [{"lang": "en", "type": "finder", "value": "Dmtirii Ignatyev"}, {"lang": "en", "type": "coordinator", "value": "WPScan"}], "affected": [{"vendor": "Unknown", "product": "All in One SEO ", "versions": [{"status": "affected", "version": "0", "lessThan": "4.6.1.1", "versionType": "semver"}], "defaultStatus": "unaffected"}], "references": [{"url": "https://wpscan.com/vulnerability/ab78b1a5-e28c-406b-baaf-6d53017f9328/", "tags": ["exploit", "vdb-entry", "technical-description"]}], "x_generator": {"engine": "WPScan CVE Generator"}, "descriptions": [{"lang": "en", "value": "The All in One SEO WordPress plugin before 4.6.1.1 does not validate and escape some of its Post fields before outputting them back, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks"}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "description": "CWE-79 Cross-Site Scripting (XSS)"}]}], "providerMetadata": {"orgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "shortName": "WPScan", "dateUpdated": "2024-05-20T06:00:01.083Z"}}}, "cveMetadata": {"cveId": "CVE-2024-3368", "state": "PUBLISHED", "dateUpdated": "2025-03-14T17:20:36.410Z", "dateReserved": "2024-04-05T08:51:06.596Z", "assignerOrgId": "1bfdd5d7-9bf6-4a53-96ea-42e2716d7a81", "datePublished": "2024-05-20T06:00:01.083Z", "assignerShortName": "WPScan"}, "dataVersion": "5.1"}

{"affected": [{"affectedData": [{"defaultStatus": "unaffected", "product": "All in One SEO ", "vendor": "Unknown", "versions": [{"lessThan": "4.6.1.1", "status": "affected", "version": "0", "versionType": "semver"}]}], "source": "contact@wpscan.com"}, {"affectedData": [{"cpes": ["cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:*"], "defaultStatus": "unknown", "product": "all_in_one_seo", "vendor": "aioseo", "versions": [{"lessThan": "4.6.1.1", "status": "affected", "version": "0", "versionType": "custom"}]}], "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0"}], "configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:aioseo:all_in_one_seo:*:*:*:*:*:wordpress:*:*", "matchCriteriaId": "4FE324BD-6857-4C97-9215-1D55992FD748", "versionEndExcluding": "4.6.1.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The All in One SEO WordPress plugin before 4.6.1.1 does not validate and escape some of its Post fields before outputting them back, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks"}, {"lang": "es", "value": " El complemento de WordPress All in One SEO anterior a 4.6.1.1 no valida ni escapa algunos de sus campos de publicaci\u00f3n antes de devolverlos, lo que podr\u00eda permitir a los usuarios con el rol de colaborador y superiores realizar ataques de Cross Site Scripting Almacenado."}], "id": "CVE-2024-3368", "lastModified": "2026-06-17T07:44:08.620", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.1, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 2.7, "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "type": "Secondary"}], "ssvcV203": [{"source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "ssvcData": {"id": "CVE-2024-3368", "options": [{"exploitation": "poc"}, {"automatable": "no"}, {"technicalImpact": "partial"}], "role": "CISA Coordinator", "timestamp": "2024-05-20T11:43:43.506112Z", "version": "2.0.3"}}]}, "published": "2024-05-20T06:15:08.527", "references": [{"source": "contact@wpscan.com", "tags": ["Exploit", "Third Party Advisory"], "url": "https://wpscan.com/vulnerability/ab78b1a5-e28c-406b-baaf-6d53017f9328/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Third Party Advisory"], "url": "https://wpscan.com/vulnerability/ab78b1a5-e28c-406b-baaf-6d53017f9328/"}], "sourceIdentifier": "contact@wpscan.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}