Lucene search
K

156 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 4:39 a.m.9 views

CVE-2023-26532

Cross-Site Request Forgery CSRF vulnerability in AccessPress Themes Social Auto Poster plugin = 2.1.4 versions...

8.8CVSS7.2AI score0.00269EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 8:29 a.m.6 views

CVE-2024-47369

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpweb Social Auto Poster social-auto-poster allows Reflected XSS.This issue affects Social Auto Poster: from n/a through = 5.3.15...

7.1CVSS5.9AI score0.00302EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 3:7 a.m.8 views

CVE-2024-6753

The Social Auto Poster plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘mapTypes’ parameter in the 'wpwautopostermapwordpressposttype' AJAX function in all versions up to, and including, 5.3.14 due to insufficient input sanitization and output escaping. This makes it...

7.2CVSS6.1AI score0.00829EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:57 a.m.18 views

CVE-2024-6750

The Social Auto Poster plugin for WordPress is vulnerable to unauthorized access, modification, and loss of data due to a missing capability check on multiple functions in all versions up to, and including, 5.3.14. This makes it possible for unauthenticated attackers to add, modify, or delete pos...

7.5CVSS6.8AI score0.00285EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:50 a.m.25 views

CVE-2024-6756

The Social Auto Poster plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the 'wpwautopostergetimagepath' function in all versions up to, and including, 5.3.14. This makes it possible for authenticated attackers, with Contributor-level and above...

8.8CVSS7.2AI score0.00786EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 12:22 a.m.9 views

CVE-2024-31345

Unrestricted Upload of File with Dangerous Type vulnerability in Sukhchain Singh Auto Poster.This issue affects Auto Poster: from n/a through 1.2...

9.1CVSS8.6AI score0.0085EPSS
Exploits0References1
NVD
NVD
added 2024/10/20 11:15 a.m.33 views

CVE-2024-49272

Cross-Site Request Forgery CSRF vulnerability in wpweb Social Auto Poster social-auto-poster allows Cross Site Request Forgery.This issue affects Social Auto Poster: from n/a through = 5.3.15...

8.8CVSS0.00193EPSS
Exploits0References1
OSV
OSV
added 2024/10/20 11:15 a.m.6 views

CVE-2024-49272

Cross-Site Request Forgery CSRF vulnerability in WPWeb Social Auto Poster allows Cross Site Request Forgery.This issue affects Social Auto Poster: from n/a through 5.3.15...

8.8CVSS5.8AI score0.00193EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/10/20 10:23 a.m.53 views

CVE-2024-49272 WordPress Social Auto Poster plugin <= 5.3.15 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in wpweb Social Auto Poster social-auto-poster allows Cross Site Request Forgery.This issue affects Social Auto Poster: from n/a through = 5.3.15...

4.3CVSS0.00193EPSS
Exploits0References1
CVE
CVE
added 2024/10/20 10:23 a.m.55 views

CVE-2024-49272

CVE-2024-49272 : A CSRF vulnerability exists in the WordPress plugin Social Auto Poster (WPWeb Social Auto Poster) that allows unauthorized actions to be performed on behalf of a user. Affected versions are listed as n/a through 5.3.15. The issue has a patch available: update to version 5.3.16 or...

8.8CVSS5.9AI score0.00193EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/10/20 10:23 a.m.29 views

CVE-2024-49272 WordPress Social Auto Poster plugin <= 5.3.15 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in WPWeb Social Auto Poster allows Cross Site Request Forgery.This issue affects Social Auto Poster: from n/a through 5.3.15...

4.3CVSS7AI score0.00193EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/20 12:0 a.m.10 views

PT-2024-33411 · WordPress · Wpweb Social Auto Poster

Name of the Vulnerable Software and Affected Versions: WPWeb Social Auto Poster versions n/a through 5.3.15 Description: A Cross-Site Request Forgery CSRF issue affects WPWeb Social Auto Poster, allowing unauthorized actions to be performed on behalf of a user. This issue can be exploited by...

8.8CVSS7AI score0.00193EPSS
Exploits0References7
CNNVD
CNNVD
added 2024/10/20 12:0 a.m.28 views

WordPress plugin Social Auto Poster 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blogging sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request...

8.8CVSS6.7AI score0.00193EPSS
Exploits0References2
NVD
NVD
added 2024/10/16 7:15 a.m.9 views

CVE-2020-36831

The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on multiple user privilege/security functions provided in versions up to, and including 4.3.17. This makes it possible for low-privileged attackers, like...

6.5CVSS0.00488EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/10/16 6:43 a.m.25 views

CVE-2020-36831 NextScripts: Social Networks Auto-Poster <= 4.3.17 - Missing Authorization

The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on multiple user privilege/security functions provided in versions up to, and including 4.3.17. This makes it possible for low-privileged attackers, like...

5CVSS0.00488EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2024/10/16 6:43 a.m.18 views

CVE-2020-36831 NextScripts: Social Networks Auto-Poster <= 4.3.17 - Missing Authorization

The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on multiple user privilege/security functions provided in versions up to, and including 4.3.17. This makes it possible for low-privileged attackers, like...

5CVSS7AI score0.00488EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/10/16 12:0 a.m.3 views

WordPress plugin NextScripts: Social Networks Auto-Poster 访问控制错误漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin that supports personal blogs on PHP and MySQL servers. An Access Control Error vulnerability exists in WordPres...

6.5CVSS6.7AI score0.00488EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/10/14 1:23 p.m.4 views

WordPress Social Auto Poster plugin <= 5.3.15 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Ananda Dhakal Patchstack in WordPress Plugin Social Auto Poster versions = 5.3.15...

8.8CVSS7AI score0.00193EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/10/14 12:0 a.m.12 views

WordPress Social Auto Poster Plugin <= 5.3.15 is vulnerable to Cross Site Request Forgery (CSRF)

Software Social Auto Poster Type Plugin Vulnerable versions = 5.3.15 Fixed in 5.3.16 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-49272 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID d78a86986549 Credits Ananda Dhakal...

8.8CVSS6.6AI score0.00193EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/10/05 4:15 p.m.12 views

CVE-2024-47369

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in wpweb Social Auto Poster social-auto-poster allows Reflected XSS.This issue affects Social Auto Poster: from n/a through = 5.3.15...

7.1CVSS0.00302EPSS
Exploits0References1
Rows per page
Query Builder