WordPress Easy Social Icons plugin <= 3.0.8 - Reflected Cross-Site Scripting (XSS) vulnerability

2021-09-0100:00:00

Ramuel Gall (WordFence)

patchstack.com

0.003 Low

EPSS

Percentile

65.9%

Reflected Cross-Site Scripting (XSS) vulnerability discovered by Ram Gall (WordFence) in WordPress Easy Social Icons plugin (versions <= 3.0.8).

Solution

           Update the WordPress Easy Social Icons plugin to the latest available version (at least 3.0.9).

CPENameOperatorVersion
easy social iconsle3.0.8

CPE	Name	Operator	Version
	easy social icons	le	3.0.8

cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-39322

wordpress.org/plugins/easy-social-icons/#developers

www.wordfence.com/vulnerability-advisories/

0.003 Low

EPSS

Percentile

65.9%

Related for PATCHSTACK:A27BFF0885771E1593E406CF293CC7EB