cleantalk
Vulnerabilities and Security Researches

Simple SEO, CVE-2022-36404

CVE, Research URL

CVE-2022-36404

Home page URL

Security reports for Simple SEO

Application

Simple SEO

Published on
Nov 04, 2022
Research Description
Missing Authorization, Cross-Site Request Forgery (CSRF) vulnerability in David Cole Simple SEO (WordPress plugin) plugin <= 1.8.12 versions.
Affected versions
max 1.8.13.
Status
vulnerable
Previous vulnerability researches
Simple SEO (CVE-2023-45269) , Jun 07, 2024
Simple SEO (CVE-2022-1628) , Jun 07, 2024
Simple SEO (CVE-2022-36404) , Jun 07, 2024
Simple SEO (CVE-2022-44627) , Jun 07, 2024
Simple SEO (CVE-2025-10357) , Nov 10, 2025
New vulnerability
WP Gmail SMTP (172cc1f3c82eb47a0e2bb5d14ce96f28ededb179) , Nov 11, 2025
WP Gmail SMTP (CVE-2025-53232) , Nov 11, 2025
Connector for Gravity Forms and Google Sheets (CVE-2025-60209) , Nov 11, 2025
Email Tracker – Email Tracking Plugin to track Emails for Open and Email Links Click (Compatible with WooCommerce) (CVE-2025-10047) , Nov 11, 2025
Advanced Ads – Ad Manager &amp; AdSense (CVE-2025-10487) , Nov 11, 2025