Keeping On Top of Your Sensitive Information
Not every WordPress vulnerability is about your blog getting hacked… Sometimes you just might be giving a little too much information to strangers.
If you are running Version 3.2.4 of Yoast’s SEO plugin that just might be what’s happening.
One of our security researchers, Panagiotis Vagenas, discovered a vulnerability in Yoast SEO version 3.2.4 and earlier that allows any user with ‘subscriber’ level access to download your Yoast SEO settings. For sites that have open registration, this means that anyone can register and download your Yoast SEO settings by simply creating an account and running the exploit.
Fortunately WPBlogSupport Blog Support members are keeping their cards close to their chest! I got this update from a recent Wordfence post, and all of our clients are running the updated version that removes this vulnerability.
WordPress SEO is important and Yoast is one of the best SEO Optimzation plugins available for WordPress Bloggers. We use it on a number of our sites and provide SEO Training at WPhomeroom for members who want to Get Ranked First On Google!
Keep your WordPress site safe.
