{"id":129,"date":"2014-09-06T18:53:34","date_gmt":"2014-09-06T18:53:34","guid":{"rendered":"http:\/\/www.techindiasoftware.com\/seo-updates\/?p=129"},"modified":"2016-11-25T07:09:14","modified_gmt":"2016-11-25T07:09:14","slug":"all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out","status":"publish","type":"post","link":"https:\/\/www.techindiasoftware.com\/blog\/all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out\/","title":{"rendered":"All in One SEO Pack WordPress Plugin: Threats and the Way Out"},"content":{"rendered":"

Quite a many site experts have been voicing their concern regarding the increased vulnerability found in the All in One SEO Pack WordPress Plugin. This is a sure alarm signal for those who are depending on the most popular All In One SEO Plugin and have not updated to version 2.1.6 or above over the last month. If you belong to this segment, then you must wake up and immediately do something about it. The SEO plugin has a number of vulnerabilities that can allow hackers to modify or add some SEO parameters that can lead to severe penalties with the SEO rankings.<\/a> In addition, the hackers can also easily choose to make use of the code to enter a highly malicious javascript code within the admin\u2019s control panel. The team that has made the All in One SEO pack has released the new 2.1.6 version that has the capabilities to address these vulnerabilities.<\/p>\n

<\/p>\n

Some experts have identified two privilege escalation vulnerabilities that might affect the sites running the All in one SEO pack. You are at the heights of risk if your site has subscribers, authors and non-admin users logging in to wp-admin. Having open registration can put you at more risk and therefore you need to do something about this by updating to the new plugin.<\/p>\n

While analyzing the code, experts have discovered two major security flaws that enable attackers to perform privilege escalation to cross site scripting (XSS) attacks. The first case is about the fact that a user who had logged in without any administrative privileges like an author could add up or modify a few parameters used by the plugin. It will include the post\u2019s SEO title, description and keyword meta tags. If these things are used maliciously, it can certainly have a negative impact on the SERP (Search engine results page) ranking.<\/p>\n

Some might feel that this is not worrying that much if they do not attach too much importance to the search engine rankings. For them the second case can be really threatening. The second vulnerability we are talking about here could easily execute malicious javascript code on an administer control panel. The implication is that the hackers have the possibility to execute malicious javascript code and do some destructive acts like changing the admin\u2019s account password. They can also leave a backdoor to access your website\u2019s files that can lead to several evil activities at a later stage.<\/p>\n

If you are really worried how to prevent this from happening to your site, the answer is just easy and it is to update to the recent version available for the said plugin. There are also some innovative software programs that are released by some industry experts to protect the customers from such threats. This could also be a good option. Whatever be the stand you will take, better it is taken early so that something happens before any unfortunate damage is done to your site.<\/p>\n","protected":false},"excerpt":{"rendered":"

Quite a many site experts have been voicing their concern regarding the increased vulnerability found in the All in One SEO Pack WordPress Plugin. This is a sure alarm signal for those who are depending on the most popular All …<\/span> Read More →<\/span><\/a><\/span><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3],"tags":[],"class_list":["post-129","post","type-post","status-publish","format-standard","hentry","category-seo"],"yoast_head":"\nAll in One SEO Pack WordPress Plugin: Threats and the Way Out<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"All in One SEO Pack WordPress Plugin: Threats and the Way Out\" \/>\n<meta property=\"og:description\" content=\"Quite a many site experts have been voicing their concern regarding the increased vulnerability found in the All in One SEO Pack WordPress Plugin. This is a sure alarm signal for those who are depending on the most popular All … Read More →\" \/>\n<meta property=\"og:url\" content=\"https:\/\/www.techindiasoftware.com\/blog\/all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out\/\" \/>\n<meta property=\"og:site_name\" content=\"Latest Updates On : SEO and Ecommerce & Apps Development\" \/>\n<meta property=\"article:publisher\" content=\"https:\/\/www.facebook.com\/TechIndiaSoftware\" \/>\n<meta property=\"article:author\" content=\"https:\/\/www.facebook.com\/TechIndiaSoftware\" \/>\n<meta property=\"article:published_time\" content=\"2014-09-06T18:53:34+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2016-11-25T07:09:14+00:00\" \/>\n<meta name=\"author\" content=\"Mouzzam Jafri\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:creator\" content=\"@https:\/\/twitter.com\/Techindiaa\" \/>\n<meta name=\"twitter:site\" content=\"@Techindiaa\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Mouzzam Jafri\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"All in One SEO Pack WordPress Plugin: Threats and the Way Out","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"og_locale":"en_US","og_type":"article","og_title":"All in One SEO Pack WordPress Plugin: Threats and the Way Out","og_description":"Quite a many site experts have been voicing their concern regarding the increased vulnerability found in the All in One SEO Pack WordPress Plugin. This is a sure alarm signal for those who are depending on the most popular All … Read More →","og_url":"https:\/\/www.techindiasoftware.com\/blog\/all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out\/","og_site_name":"Latest Updates On : SEO and Ecommerce & Apps Development","article_publisher":"https:\/\/www.facebook.com\/TechIndiaSoftware","article_author":"https:\/\/www.facebook.com\/TechIndiaSoftware","article_published_time":"2014-09-06T18:53:34+00:00","article_modified_time":"2016-11-25T07:09:14+00:00","author":"Mouzzam Jafri","twitter_card":"summary_large_image","twitter_creator":"@https:\/\/twitter.com\/Techindiaa","twitter_site":"@Techindiaa","twitter_misc":{"Written by":"Mouzzam Jafri","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/www.techindiasoftware.com\/blog\/all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out\/#article","isPartOf":{"@id":"https:\/\/www.techindiasoftware.com\/blog\/all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out\/"},"author":{"name":"Mouzzam Jafri","@id":"https:\/\/www.techindiasoftware.com\/blog\/#\/schema\/person\/a5b28ae30d0a1b248a4740c08806c207"},"headline":"All in One SEO Pack WordPress Plugin: Threats and the Way Out","datePublished":"2014-09-06T18:53:34+00:00","dateModified":"2016-11-25T07:09:14+00:00","mainEntityOfPage":{"@id":"https:\/\/www.techindiasoftware.com\/blog\/all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out\/"},"wordCount":506,"articleSection":["SEO"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/www.techindiasoftware.com\/blog\/all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out\/","url":"https:\/\/www.techindiasoftware.com\/blog\/all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out\/","name":"All in One SEO Pack WordPress Plugin: Threats and the Way Out","isPartOf":{"@id":"https:\/\/www.techindiasoftware.com\/blog\/#website"},"datePublished":"2014-09-06T18:53:34+00:00","dateModified":"2016-11-25T07:09:14+00:00","author":{"@id":"https:\/\/www.techindiasoftware.com\/blog\/#\/schema\/person\/a5b28ae30d0a1b248a4740c08806c207"},"breadcrumb":{"@id":"https:\/\/www.techindiasoftware.com\/blog\/all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/www.techindiasoftware.com\/blog\/all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out\/"]}]},{"@type":"BreadcrumbList","@id":"https:\/\/www.techindiasoftware.com\/blog\/all-in-one-seo-pack-wordpress-plugin-threats-and-the-way-out\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/www.techindiasoftware.com\/blog\/"},{"@type":"ListItem","position":2,"name":"All in One SEO Pack WordPress Plugin: Threats and the Way Out"}]},{"@type":"WebSite","@id":"https:\/\/www.techindiasoftware.com\/blog\/#website","url":"https:\/\/www.techindiasoftware.com\/blog\/","name":"Latest Updates On : SEO and Ecommerce & Apps Development","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/www.techindiasoftware.com\/blog\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/www.techindiasoftware.com\/blog\/#\/schema\/person\/a5b28ae30d0a1b248a4740c08806c207","name":"Mouzzam Jafri","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/secure.gravatar.com\/avatar\/ae0bcfc729dca0d10eb7fd2dde554148677bbdbd26550df240611d540d2afa73?s=96&d=mm&r=g","url":"https:\/\/secure.gravatar.com\/avatar\/ae0bcfc729dca0d10eb7fd2dde554148677bbdbd26550df240611d540d2afa73?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/ae0bcfc729dca0d10eb7fd2dde554148677bbdbd26550df240611d540d2afa73?s=96&d=mm&r=g","caption":"Mouzzam Jafri"},"description":"Mouzzam Jafri Head Of Internet Marketing at TechIndiaSoftware a leading Web Design & Development Company . Years of Experience in Internet Marketing always focus on results driven SEO Techniques and work under latest Google Guidelines.","sameAs":["https:\/\/www.facebook.com\/TechIndiaSoftware","https:\/\/www.instagram.com\/techindiasoftware\/","https:\/\/www.linkedin.com\/company\/techindia-software","https:\/\/www.pinterest.com\/TIsoftware","https:\/\/x.com\/https:\/\/twitter.com\/Techindiaa","https:\/\/www.youtube.com\/watch?v=-bkN-OhU1x8"]}]}},"_links":{"self":[{"href":"https:\/\/www.techindiasoftware.com\/blog\/wp-json\/wp\/v2\/posts\/129","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.techindiasoftware.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.techindiasoftware.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.techindiasoftware.com\/blog\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.techindiasoftware.com\/blog\/wp-json\/wp\/v2\/comments?post=129"}],"version-history":[{"count":3,"href":"https:\/\/www.techindiasoftware.com\/blog\/wp-json\/wp\/v2\/posts\/129\/revisions"}],"predecessor-version":[{"id":481,"href":"https:\/\/www.techindiasoftware.com\/blog\/wp-json\/wp\/v2\/posts\/129\/revisions\/481"}],"wp:attachment":[{"href":"https:\/\/www.techindiasoftware.com\/blog\/wp-json\/wp\/v2\/media?parent=129"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.techindiasoftware.com\/blog\/wp-json\/wp\/v2\/categories?post=129"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.techindiasoftware.com\/blog\/wp-json\/wp\/v2\/tags?post=129"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}