14 matches found
CVE-2023-4888
The Simple Like Page Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'sfp-page-plugin' shortcode in versions up to, and including, 1.5.1 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated...
CVE-2025-63022
Missing Authorization vulnerability in topdevs.net Simple Like Page simple-facebook-plugin allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple Like Page: from n/a through = 1.5.3...
EUVD-2025-206042
Missing Authorization vulnerability in Illia Simple Like Page allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple Like Page: from n/a through 1.5.3...
CVE-2025-63022 WordPress Simple Like Page plugin <= 1.5.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in topdevs.net Simple Like Page simple-facebook-plugin allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple Like Page: from n/a through = 1.5.3...
CVE-2025-63022 WordPress Simple Like Page plugin <= 1.5.3 - Broken Access Control vulnerability
Missing Authorization vulnerability in topdevs.net Simple Like Page simple-facebook-plugin allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Simple Like Page: from n/a through = 1.5.3...
CVE-2025-63022
CVE-2025-63022 concerns a Missing Authorization vulnerability in the Simple Like Page WordPress plugin (affected in Simple Like Page: from n/a through 1.5.3). The connected Wordfence source indicates an unauthenticated issue labeled as Missing Authorization for Simple Like Page, implying improper...
WordPress Simple Like Page plugin <= 1.5.3 - Broken Access Control vulnerability
Broken Access Control vulnerability discovered by Legion Hunter in WordPress Plugin Simple Like Page versions = 1.5.3...
WordPress plugin Simple Like Page 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...
EUVD-2023-54727
Malicious code in bioql PyPI...
WordPress Simple Like Page Plugin <= 1.5.2 is vulnerable to Cross Site Scripting (XSS)
Software Simple Like Page Type Plugin Vulnerable versions = 1.5.2 Fixed in 1.5.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-3583 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID d29033c851e5 Credits Krzysztof Zając Require...
PT-2024-26755 · WordPress · Simple Like Page Plugin
Name of the Vulnerable Software and Affected Versions: The Simple Like Page Plugin for WordPress versions up to, and including, 1.5.2 Description: The issue arises from insufficient input sanitization and output escaping on user-supplied attributes in the plugin's shortcodes, allowing authenticat...
CVE-2023-4888
CVE-2023-4888 affects the Simple Like Page Plugin for WordPress (v ≤ 1.5.1). It enables Stored Cross-Site Scripting via the sfp-page-plugin shortcode, allowing authenticated attackers with contributor-level permissions to inject scripts that execute in pages viewed by users. The advisory consolid...
WordPress Plugin Simple Like Page Plugin Security Vulnerability
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. WordPress is a blogging platform developed in the PHP language that supports personal blogs on PHP and MySQL servers.WordPress plugin is an application...
WordPress Simple Like Page Plugin <= 1.5.1 is vulnerable to Cross Site Scripting (XSS)
Software Simple Like Page Type Plugin Vulnerable versions = 1.5.1 Fixed in 1.5.2 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-4888 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID b392da079bc2 Credits Lana Codes Required...