The Web Creatives

Are you using SEOPress on your WordPress website?

What is SEOPress?

SEOPress is a popular WordPress SEO plugin that helps you with your SEO for your website – if you have the plugin installed, you need to check the version, as a vulnerability has recently been found that affects the plugin, and could compromise your website.

An SEOPress vulnerability – That sounds serious – what is wrong with it?

To quote the WordFence team :

The SEOPress – On-site SEO plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin’s social image URL in all versions up to, and including, 7.9 due to insufficient input sanitization and output escaping on user supplied image URLs. This makes it possible for authenticated attackers with contributor-level and above permissions to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.

Wordfence Vulnerability Database

Here’s the link to the full article is you want to read up a little more:

https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/wp-seopress/seopress-on-site-seo-79-authenticatedcontributor-stored-cross-site-scripting-via-social-image-url

Ok, I am using the plugin – what do I need to do?

Luckily, it’s quite easy to fix the issue – you just need to update your plugin to a version greater than 7.9.

You can check the version in the ‘Plugin’ section in your WordPress dashboard – here’s a screen shot:

A screenshot showing the WordPress Plugin SEOPress & it's version number listed in the Plugin section of a WordPress website

If you’re at version 7.9 or below, it’s time to update the plugin.

What if I’m not that familiar with WordPress – what can I do about an SEOPress Vulnerability?

If you’re ok with adding content to your WordPress website (Blog Posts, Images or Products if you have an e-commerce website) then it’s not too difficult to update Plugins & your WordPress Version – But if you don’t have the time to spare to keep an eye on all things WordPress, The Web Creatives can help!

We have WordPress Care Plans starting from £19.99 a month which will help you to keep your WP site running smoothly – and have options for increased Security & Monitoring too. If you’d like to find out more, here’s a link to our WP Care Plan Page:

https://thewebcreatives.co.uk/care-plans/

…And Finally

We don’t just help with running your WordPress website – we can help with refreshing an existing website, adding new features or even a new build or re-build.

If you have any web-based questions, feel free to ask – we’re always happy to talk websites 😊

Refreshing websites across Coventry, the Midlands and the UK.

We also provide all kinds of other web related services too:

Hosting, WordPress Development, WP Care Plans, graphic design, Illustration, photography – if it’s web based, we can help…

Linkedin Twitter

Get Started

  • Website Owners
  • Agencies
  • Guides
  • Docs

About

  • Our Story
  • Our Work
  • Blog
  • Brand Assets

Downloads

  • Coming soon...
3-business-connect-png