WordPress All in One SEO Pack Plugin <= 2.2.5 - Information Management
All In One SEO Pack
All in One SEO Pack plugin is prone to an information management vulnerability. The attackers can obtain sensitive information by reading HTML source code, because this plugin does not consider the presence of password protection during generation of the Meta Description field.
Update the plugin.
Type Information Disclosure OWASP Top 10 A6: Sensitive Data Exposure