There is a new vulnerability affecting popular WordPress plugin Yoast. If you’re using the plugin, update it to the most recent version to protect you and your customers from attack.
What is Yoast, and what is the vulnerability?
Yoast is an SEO plugin for WordPress. Versions of the plugin prior to 18.104.22.168 are vulnerable to a blind SQL injection attack, which can lead to a database breach and exposure of confidential information.
What do I need to do to protect my website?
If you’re using Yoast, upgrade to the latest version (1.7.4). Make sure you regularly back up your site to prevent irreparable damage from attacks, take advantage of WordPress’s automated updating of plugins and themes and avoid WordPress plugins that don’t allow for auto-updating.