The All in One SEO plugin’s security has been exploited. Hackers have found a new entry method into your website via the All in One SEO WordPress Plugin. Specifically, hackers can now use privilege escalation and cross site (XSS) attacks on your website. If you update your plugin you will be, at least temporarily, immune to these attacks that hackers are currently exploiting. If you’re looking to make a switch, Blizzard recommends WordPress SEO by Yoast plugin, which is a similar SEO plugin with more functionality that has not been exploited
You have three options; delete the All in One SEO plugin, update the plugin to the latest version or install the WordPress SEO by Yoast plugin. Please take action immediately to avoid any attacks on your website. If you have any questions regarding taking action on this, please contact us.