Security Warning for All In One SEO Plugin
Published on July 17, 2020
Published on Wealthy Affiliate — a platform for building real online businesses with modern training and AI.
The All In One SEO Plugin Needs an Update
Wordfence, the security plugin I use and recommend, released a notification early this morning (my time) to advise that the All In One SEO plugin which is used on over 2 million websites had a security risk which has now been rectified in the latest update.
In Plain English
Any user of your website with Contributor access or above could inject a malicious script and take over the site.
Ready to put this into action?
Start your free journey today — no credit card required.
What this means to you is probably not much. If you're the only registered user on your website then nothing is going to happen. But if you've allowed other users to register then there's a potential problem.
In any case, watch this video...
Update your website
The security risk has been rectified in the latest version of the All In One SEO plugin, version 3.6.2 at the time of writing.
Always keep WordPress, all your plugins, and themes up to date. Updates are made to fix problems and security issues and add new features.
Stay safe,
Share this insight
This conversation is happening inside the community.
Join free to continue it.The Internet Changed. Now It Is Time to Build Differently.
If this article resonated, the next step is learning how to apply it. Inside Wealthy Affiliate, we break this down into practical steps you can use to build a real online business.
No credit card. Instant access.