CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

The Social Share Buttons, Social Sharing Icons, Click to Tweet — Social Media Plugin by Social Snap WordPress plugin through 1.3.6 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the...

3.5CVSS5.6AI score0.00143EPSS

Exploits1References1

Patchstack•added 2025/03/11 7:16 a.m.•0 views

WordPress Social Snap plugin < 1.4 - Cross Site Scripting (XSS) vulnerability

Cross Site Scripting XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Social Snap versions 1.4...

3.5CVSS7.3AI score0.00143EPSS

Exploits1References1Affected Software1

OSV•added 2025/03/11 6:15 a.m.•0 views

CVE-2024-13615

3.5CVSS7.3AI score

Exploits0References1

NVD•added 2025/03/11 6:15 a.m.•6 views

CVE-2024-13615

3.5CVSS0.00143EPSS

Exploits1References1

Vulnrichment•added 2025/03/11 6:0 a.m.•6 views

CVE-2024-13615 Social Media Plugin by Social Snap <= 1.3.6 - Admin+ Stored XSS

3.4AI score0.00143EPSS

Exploits1References1

CVE•added 2025/03/11 6:0 a.m.•43 views

CVE-2024-13615

CVE-2024-13615 affects the WordPress plugin “Social Snap” (Social Share Buttons / Social Sharing Icons / Click to Tweet) up to version 1.3.6. Public description: stored cross-site scripting (XSS) could be triggered by high-privilege admins via unsanitised/unescaped settings, even when unfiltered_...

3.5CVSS5.8AI score0.00143EPSS

Exploits1References1Affected Software1

CNNVD•added 2025/03/11 12:0 a.m.•2 views

WordPress plugin Social Snap 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

3.5CVSS8.3AI score0.00143EPSS

Exploits1References2

NVD•added 2024/06/09 1:15 p.m.•11 views

CVE-2024-32805

Missing Authorization vulnerability in Social Snap.This issue affects Social Snap: from n/a through 1.3.5...

6.5CVSS0.00096EPSS

Exploits0References1

CVE•added 2024/06/09 12:47 p.m.•53 views

CVE-2024-32805

CVE-2024-32805 is a Missing Authorization vulnerability in the WordPress plugin Social Snap , affecting versions from n/a through 1.3.5 . The connected records reiterate the same issue without providing exploit details, specific root cause, or a patch/version to remediate beyond noting the affect...

6.5CVSS6.5AI score0.00096EPSS

Exploits0References1

Vulnrichment•added 2024/06/09 12:47 p.m.•12 views

CVE-2024-32805 WordPress Social Snap plugin <= 1.3.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in Social Snap.This issue affects Social Snap: from n/a through 1.3.5...

6.5CVSS6.9AI score0.00096EPSS

Exploits0References1

Cvelist•added 2024/06/09 12:47 p.m.•15 views

CVE-2024-32805 WordPress Social Snap plugin <= 1.3.5 - Broken Access Control vulnerability

Missing Authorization vulnerability in Social Snap.This issue affects Social Snap: from n/a through 1.3.5...

6.5CVSS0.00096EPSS

Exploits0References1

CNNVD•added 2024/06/09 12:0 a.m.•0 views

WordPress plugin Social Snap security vulnerability

6.5CVSS6.7AI score0.00096EPSS

Exploits0References2

WPVulnDB•added 2024/04/29 12:0 a.m.•13 views

Social Snap < 1.3.6 - Missing Authorization

Description The Social Snap plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the init function in versions up to, and including, 1.3.5. This makes it possible for unauthenticated attackers to modify the plugin's settings...

6.5CVSS6.9AI score0.00096EPSS

Exploits0References1Affected Software1

Patchstack•added 2024/04/22 2:39 p.m.•2 views

WordPress Social Snap plugin <= 1.3.5 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by Majed Refaea Patchstack Alliance in WordPress Plugin Social Snap versions = 1.3.5...

6.5CVSS7AI score0.00096EPSS

Exploits0Affected Software1

Patchstack•added 2024/04/22 12:0 a.m.•5 views

WordPress Social Snap Plugin <= 1.3.5 is vulnerable to Broken Access Control

Software Social Snap Type Plugin Vulnerable versions = 1.3.5 Fixed in 1.3.6 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-32805 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 4bb46049199a Credits Majed Refaea Required...

6.5CVSS6.5AI score0.00096EPSS

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by