CVSS 3.1 Score 5.9 of 10 (medium)


Published Nov 30, 2023
Updated: Dec 5, 2023


CVE-2023-40680 is a vulnerability classified as Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in Team Yoast Yoast SEO. It affects Yoast SEO versions from n/a through 21.0. The vulnerability allows for Stored XSS attacks. To remediate this issue, users should update their Yoast SEO software to version 21.1 or later. This vulnerability has a base severity rating of MEDIUM with a base score of 5.9 according to the CVSS v3.1 scoring system. It requires high privileges and user interaction to exploit and has a low impact on integrity and confidentiality but can lead to low availability of the affected systems.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-40680 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options