Security Warning for All In One SEO Plugin
The All In One SEO Plugin Needs an Update
Wordfence, the security plugin I use and recommend, released a notification early this morning (my time) to advise that the All In One SEO plugin which is used on over 2 million websites had a security risk which has now been rectified in the latest update.
In Plain English
Any user of your website with Contributor access or above could inject a malicious script and take over the site.
What this means to you is probably not much. If you're the only registered user on your website then nothing is going to happen. But if you've allowed other users to register then there's a potential problem.
In any case, watch this video...
The security risk has been rectified in the latest version of the All In One SEO plugin, version 3.6.2 at the time of writing.
Always keep WordPress, all your plugins, and themes up to date. Updates are made to fix problems and security issues and add new features.