Lucene search
+L

5 matches found

Patchstack
Patchstack
added 2025/05/17 12:33 a.m.10 views

WordPress Social Media Share Buttons plugin < 2.9.0 - Admin+ Stored XSS vulnerability

Admin+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Social Media & Share Icons versions 2.9.0...

4.8CVSS6AI score0.00315EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2025/05/15 8:15 p.m.13 views

CVE-2024-10362

The Social Media Share Buttons & Social Sharing Icons WordPress plugin before 2.9.1 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

4.8CVSS0.00315EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/05/15 8:6 p.m.16 views

CVE-2024-10362 Social Media Share Buttons < 2.9.0 - Admin+ Stored XSS

The Social Media Share Buttons & Social Sharing Icons WordPress plugin before 2.9.1 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

0.00315EPSS
Exploits1References1
CVE
CVE
added 2025/05/15 8:6 p.m.39 views

CVE-2024-10362

CVE-2024-10362 affects the WordPress plugin Social Media Share Buttons & Social Sharing Icons (versions before 2.9.1). The issue is improper sanitization/escaping of certain plugin settings, potentially allowing stored XSS by high-privilege users (e.g., admins) even when unfiltered_html is disall...

4.8CVSS5.8AI score0.00315EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichment
added 2025/05/15 8:6 p.m.12 views

CVE-2024-10362 Social Media Share Buttons < 2.9.0 - Admin+ Stored XSS

The Social Media Share Buttons & Social Sharing Icons WordPress plugin before 2.9.1 does not sanitize and escape some of its settings, which could allow high-privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for...

4.8AI score0.00315EPSS
Exploits1References1
Rows per page
Query Builder