CVE-2019-13478

See a problem?
Please try reporting it to the source first.

Source

https://nvd.nist.gov/vuln/detail/CVE-2019-13478

Import Source

https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-13478.json

JSON Data

https://api.test.osv.dev/v1/vulns/CVE-2019-13478

Published

2019-07-09T23:15:10.357Z

Modified

2025-11-14T09:14:35.210515Z

Severity

9.8 (Critical) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVSS Calculator

Summary

[none]

Details

The Yoast SEO plugin before 11.6-RC5 for WordPress does not properly restrict unfiltered HTML in term descriptions.

References

Affected packages

Git / github.com/yoast/wordpress-seo

Affected ranges

Type: GIT
Repo: https://github.com/yoast/wordpress-seo
Events: Introduced

0 Unknown introduced commit / All previous commits are affected

Fixed

7f27d314935e6d3391ce5402d3e7e904670c4e73

Affected versions

1.*

1.4.15

1.4.18

1.4.20

1.4.21

1.4.22

1.4.23

1.4.24

1.4.25

1.5.0

1.5.1

1.5.2

1.5.2.1

1.5.2.2

1.5.2.3

1.5.2.4

1.5.2.5

1.5.2.6

1.5.2.7

1.5.2.8

1.5.3

1.5.3.1

1.5.3.2

1.5.3.3

1.5.4

1.5.4.1

1.5.4.2

1.5.5

1.5.5.1

1.5.5.2

1.5.5.3

1.5.6

1.6

1.6.1

1.6.2

1.6.3

1.7

1.7.1

1.8-beta

10.*

10.0

10.0-RC1

10.0-beta2

10.0.1

10.1

10.1-RC1

10.1-RC2

10.1-RC3

10.1-RC4

10.1-RC5

10.1.1

10.1.2

10.1.3

11.*

11.0

11.0-RC1

11.0-RC2

11.0-RC3

11.0-RC4

11.1

11.1-RC1

11.1-RC3

11.1-RC8

11.1.1

11.1.1-RC1

11.2

11.2-RC1

11.2-RC2

11.2.1

11.3

11.3-RC1

11.3-RC2

11.3-RC3

11.4

11.4-RC2

11.5

11.5-RC1

11.6-RC1

11.6-RC2

11.6-RC3

11.6-RC4

11.6-RC5

11.6-RC6

2.*

2.0

2.0.1

2.1

2.1.1

2.2

2.2.1

2.3

2.3.1

2.3.2

2.3.3

2.3.4

2.3.5

3.*

3.0

3.0.1

3.0.2

3.0.3

3.0.4

3.0.5

3.0.6

3.0.7

3.1

3.1.1

3.1.2

3.2

3.2.1

3.2.2

3.2.3

3.2.4

3.2.5

3.3.0

3.3.1

3.3.2

3.3.3

3.3.4

3.4

3.4.1

3.4.2

3.5

3.6

3.6.1

3.7.0

3.7.1

3.8

3.9

4.*

4.0

4.0.2

4.1

4.2

4.2.1

4.3

4.4

4.5

4.6

4.7

4.7.1

4.8

4.9

5.*

5.0

5.0.1

5.0.2

5.1

5.2

5.3

5.3.1

5.3.2

5.3.3

5.4.0

5.4.1

5.4.2

5.5

5.5.1

5.6

5.6.1

5.7

5.7.1

5.8

5.9

5.9.1

5.9.2

5.9.3

6.*

6.0

6.1

6.1.1

6.2

6.3

6.3.1

7.*

7.0

7.0.1

7.0.2

7.0.3

7.1

7.2

7.3

7.4

7.4.1

7.4.2

7.5

7.5.1

7.5.3

7.6

7.6.1

7.7

7.7.1

7.7.2

7.7.3

7.8

7.9

7.9.1

8.*

8.0

8.1

8.1.1

8.1.2

8.2

8.2.1

8.3

8.3-RC1

8.3-RC2

8.4

8.4-RC1

8.4-RC2

Other

9,6-RC2

9.*

9.0

9.0-RC1

9.0-RC2

9.0-RC3

9.0-RC4

9.0-RC5

9.0.1

9.0.2

9.0.3

9.1

9.1-RC1

9.1-RC2

9.1-RC3

9.1-RC4

9.1.1-RC1

9.2

9.2-RC1

9.2-RC2

9.2-RC3

9.2-RC4

9.2.1

9.3

9.3-RC1

9.3-RC2

9.3-RC3

9.3-beta1

9.3-beta2

9.4

9.4-RC1

9.4-RC3

9.4-RC4

9.4-RC5

9.5

9.5-RC1

9.5-RC2

9.5-RC3

9.5-beta1

9.5-beta2

9.6

9.6-RC1

9.6-beta1

9.6-beta2

9.6-beta3

9.6-beta4

9.7

9.7-RC1

9.7-RC2

9.7-RC3

9.7-beta1

9.7-beta2

9.8-RC1

Database specific

source

"https://storage.googleapis.com/osv-test-cve-osv-conversion/osv-output/CVE-2019-13478.json"