VYPR

Baiduseo

by WordPress

Source repositories

CVEs (2)

  • CVE-2025-3917CriMay 15, 2025
    risk 0.57cvss 9.8epss 0.01

    The 百度站长SEO合集(支持百度/神马/Bing/头条推送) plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the download_remote_image_to_media_library function in all versions up to, and including, 2.0.6. This makes it…

  • CVE-2025-62977MedOct 27, 2025
    risk 0.34cvss 5.3epss 0.00

    Missing Authorization vulnerability in 沃之涛 百度站长SEO合集(支持百度/神马/Bing/头条推送) baiduseo allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects 百度站长SEO合集(支持百度/神马/Bing/头条推送): from n/a…