Yoast SEO plugin version 1.14.15 suffers from a cross site scripting vulnerability.
ad07894aa4a076ba14a0f632894ecaf4d9a2390bbfd8bb7fc1cf7bd5c3820683
Discussion:
Yoast SEO Plugin v1.14.15 has a xss vulnerability due to lack of search
sanitation.
Exploit:
This can be exploited with a browser and is usually executed inside the
search parameter of the website.
Proof of concept:
http://5linx.com/?s="><script>alert(document.cookie);</script>