CVE-2019-13478

See a problem?
Please try reporting it to the source first.
Source
https://cve.org/CVERecord?id=CVE-2019-13478
Import Source
https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-13478.json
JSON Data
https://api.osv.dev/v1/vulns/CVE-2019-13478
Published
2019-07-09T23:15:10.357Z
Modified
2026-04-10T05:54:39.004942Z
Severity
  • 9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator
Summary
[none]
Details

The Yoast SEO plugin before 11.6-RC5 for WordPress does not properly restrict unfiltered HTML in term descriptions.

References

Affected packages

Git / github.com/yoast/wordpress-seo

Affected ranges

Type
GIT
Repo
https://github.com/yoast/wordpress-seo
Events
Introduced
0 Unknown introduced commit / All previous commits are affected
Fixed
7f27d314935e6d3391ce5402d3e7e904670c4e73
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
bca87ea0d83eb2a08abbcf75a6cdd417629b9b6e
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
1d360d8e6939a562df11a94416a97a4d2c8725e9
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
4811c9e16a00fb100f5b4c621ddc9d93104708d2
Introduced
0 Unknown introduced commit / All previous commits are affected
Last affected
1ed4ea5782b3dcdf46993ad41a9769f636145a15
Database specific 
{
    "versions": [
        {
            "introduced": "0"
        },
        {
            "fixed": "11.6"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "11.6-rc1"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "11.6-rc2"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "11.6-rc3"
        },
        {
            "introduced": "0"
        },
        {
            "last_affected": "11.6-rc4"
        }
    ]
}

Affected versions

1.*
1.4.15
1.4.18
1.4.20
1.4.21
1.4.22
1.4.23
1.4.24
1.4.25
1.5.0
1.5.1
1.5.2
1.5.2.1
1.5.2.2
1.5.2.3
1.5.2.4
1.5.5
1.5.5.1
1.5.5.2
1.5.5.3
1.5.6
1.6
1.6.1
1.6.2
1.6.3
1.8-beta
10.*
10.0
10.0.1
10.1
10.1-RC1
10.1-RC3
10.1.1
10.1.2
10.1.3
11.*
11.0
11.0-RC1
11.0-RC2
11.0-RC4
11.1
11.1-RC1
11.1.1
11.2
11.2.1
11.3
11.3-RC1
11.4
11.5
11.5-RC1
11.6-RC1
11.6-RC2
11.6-RC3
11.6-RC4
2.*
2.0
2.0.1
2.1
2.1.1
2.2
2.2.1
2.3
2.3.1
2.3.2
3.*
3.0
3.0.1
3.0.2
3.0.3
3.0.4
3.0.5
3.0.6
3.3.1
3.4
3.7.0
4.*
4.5
4.6
4.7
4.8
4.9
5.*
5.1
5.2
5.3
5.3.1
5.3.2
5.3.3
5.4.0
5.4.1
5.4.2
5.5
5.5.1
5.6
5.6.1
5.7
5.7.1
5.8
5.9
5.9.1
5.9.2
5.9.3
6.*
6.0
6.1
6.1.1
6.2
6.3
6.3.1
7.*
7.0
7.0.1
7.0.2
7.0.3
7.1
7.2
7.3
7.4
7.4.1
7.4.2
7.5
7.5.1
7.5.3
7.6
7.6.1
7.7
7.7.1
7.7.2
7.7.3
7.8
7.9
7.9.1
8.*
8.0
8.1
8.1.1
8.1.2
8.2
8.2.1
8.3
8.4
9.*
9.0
9.0.1
9.0.2
9.0.3
9.1
9.2
9.2-RC1
9.2.1
9.3
9.3-beta1
9.3-beta2
9.4
9.5
9.5-beta1
9.5-beta2
9.6
9.6-beta1
9.7
9.7-beta1
9.8-RC1

Database specific

source 
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2019-13478.json"