3 matches found
WordPress Blog2Social Plugin < 5.9.0 XSS Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.113569";...
CVE-2019-17550
The Blog2Social plugin before 5.9.0 for WordPress is affected by: Cross Site Scripting XSS. The impact is: Allows an attacker to execute arbitrary HTML and JavaScript code via the b2sid parameter. The component is: views/b2s/post.calendar.php. The attack vector is: When the Administrator is logge...
CVE-2019-17550
CVE-2019-17550 affects the WordPress Blog2Social plugin prior to version 5.9.0. The vulnerability is a reflected Cross‑Site Scripting (XSS) in the b2s_id parameter handled by views/b2s/post.calendar.php. When an administrator is logged in, clicking a malicious URL can cause arbitrary HTML/JavaScr...