XSS Bug in SEOPress WordPress Plugin Allows Site Takeover

The bug would allow a number of malicious actions, up to and including full site takeover. The vulnerable plugin is installed on 100,000 websites.