CVE-2023-28785
- Source
- https://cve.org/CVERecord?id=CVE-2023-28785
- Import Source
- https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2023-28785.json
- JSON Data
- https://api.osv.dev/v1/vulns/CVE-2023-28785
- Published
- 2023-05-28T19:15:09.207Z
- Modified
- 2026-04-10T05:57:28.156351Z
- Severity
-
- 5.4 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N CVSS Calculator
- Summary
- [none]
- Details
-
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Yoast Yoast SEO: Local plugin <= 14.9 versions.
- References
Affected packages
Git / github.com/yoast/wordpress-seo
Affected versions
1.*
1.4.15
1.4.18
1.4.20
1.4.21
1.4.22
1.4.23
1.4.24
1.4.25
1.5.0
1.5.1
1.5.2
1.5.2.1
1.5.2.2
1.5.2.3
1.5.2.4
1.5.5
1.5.5.1
1.5.5.2
1.5.5.3
1.5.6
1.6
1.6.1
1.6.2
1.6.3
1.8-beta
10.*
10.0
10.0.1
10.1
10.1.1
10.1.2
10.1.3
11.*
11.0
11.1
11.1.1
11.2
11.2.1
11.3
11.4
11.5
11.6
11.7
11.8
11.9
12.*
12.0
12.1
12.2
12.3
12.4
12.5
12.5.1
12.6
12.6.1
12.6.2
12.7
12.7.1
12.8
12.8.1
12.9
12.9.1
13.*
13.0
13.1
13.2
13.3
13.4
13.5
14.*
14.0
14.0.1
14.0.2
14.0.3
14.0.4
14.1
14.2
14.3
14.4
14.4.1
14.5
14.6
14.6.1
14.7
14.8
14.8.1
14.9
2.*
2.0
2.0.1
2.1
2.1.1
2.2
2.2.1
2.3
2.3.1
2.3.2
3.*
3.0
3.0.1
3.0.2
3.0.3
3.0.4
3.0.5
3.0.6
3.3.1
3.4
3.7.0
4.*
4.5
4.6
4.7
4.8
4.9
5.*
5.1
5.2
5.3
5.3.1
5.3.2
5.3.3
5.4.0
5.4.1
5.4.2
5.5
5.5.1
5.6
5.6.1
5.7
5.7.1
5.8
5.9
5.9.1
5.9.2
5.9.3
6.*
6.0
6.1
6.1.1
6.2
6.3
6.3.1
7.*
7.0
7.0.1
7.0.2
7.0.3
7.1
7.2
7.3
7.4
7.4.1
7.4.2
7.5
7.5.1
7.5.3
7.6
7.6.1
7.7
7.7.1
7.7.2
7.7.3
7.8
7.9
7.9.1
8.*
8.0
8.1
8.1.1
8.1.2
8.2
8.2.1
8.3
8.4
9.*
9.0
9.0.1
9.0.2
9.0.3
9.1
9.2
9.2.1
9.3
9.4
9.5
9.6
9.7