Latest

Access violation vulnerability in SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer 3.10.8

CVE-2024-6556

Severity: medium-risk
Status: Fixed
Publication: July 9, 2024

A popular plugin for WordPress called SmartCrawl, which helps with optimizing website content for search engines, has a security vulnerability in all versions up to 3.10.8. This is because the plugin uses a tool called “mobiledetect” without any protection against direct access to its files. This means that someone without proper authorization can find out the full path of the website, which could potentially be used for other malicious purposes. However, this vulnerability alone is not enough to cause harm to a website – it would require another vulnerability to be present.

Detected in:

SmartCrawl SEO checker, analyzer & optimizer fixed vulnerable versions:

SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer fixed vulnerable versions: >= * <= 3.10.8

Open source

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

Incorrect?

Is this information incorrect? Please leave us a message.

Latest

Access violation vulnerability in SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer 3.10.8

Detected in:

Join our mailing list - 6 Tips & Tricks in your inbox over the next days!

Plugins

Get Started

About

Popular articles

Latest

Passkeys: no need for Limit Login Attempts?

Access violation vulnerability in SmartCrawl WordPress SEO checker, SEO analyzer, SEO optimizer 3.10.8

Detected in: