Vulnerabilities and security researches for google-sitemap-generator

Jan 08, 2025

PSC, Research URL: PSC-2024-64543
Home page URL: Security reports for XML Sitemap Generator for Google
Application: XML Sitemap Generator for Google
Date: -
Research Description: The XML Sitemap Generator for Google is a powerful plugin designed to improve website indexing and SEO rankings by creating comprehensive XML and HTML sitemaps. Supporting custom post types, taxonomies, and various media formats such as images, videos, and RSS feeds, this plugin ensures search engines efficiently discover and index all content on your WordPress site.
Affected versions: Min -, max -.
Status: SAFE & CERTIFIED

CVE, Research URL: CVE-2021-25088
Home page URL: Security reports for XML Sitemap Generator for Google
Application: XML Sitemap Generator for Google
Date: Jun 20, 2022
Research Description: The XML Sitemaps WordPress plugin before 4.1.3 does not sanitise and escape a settings before outputting it in the Debug page, which could allow high privilege users to perform Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup)
Affected versions: Min -, max -.
Status: vulnerable

CVE, Research URL: CVE-2018-16204
Home page URL: Security reports for XML Sitemap Generator for Google
Application: XML Sitemap Generator for Google
Date: Jan 10, 2019
Research Description: Cross-site scripting vulnerability in Google XML Sitemaps Version 4.0.9 and earlier allows remote authenticated attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected versions: Min -, max -.
Status: vulnerable