Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 9:58 a.m.10 views

CVE-2024-27189

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in catchsquare WP Social Widget allows Stored XSS.This issue affects WP Social Widget: from n/a through 2.2.5...

6.5CVSS8.6AI score0.00337EPSS
Exploits0References1
CVE
CVE
added 2024/03/15 12:52 p.m.72 views

CVE-2024-27189

CVE-2024-27189 affects WordPress WP Social Widget (plugin) versions up to and including 2.2.5, with a Stored XSS due to improper input neutralization during page generation. Public reports confirm the issue (WordPress plugin page and Red Hat/NVD references) and indicate a fix was released in vers...

6.5CVSS8.6AI score0.00337EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/03/15 12:52 p.m.24 views

CVE-2024-27189 WordPress WP Social Widget plugin <= 2.2.5 - Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in catchsquare WP Social Widget allows Stored XSS.This issue affects WP Social Widget: from n/a through 2.2.5...

6.5CVSS6.6AI score0.00337EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/02/26 12:0 a.m.15 views

WordPress WP Social Widget Plugin <= 2.2.5 is vulnerable to Cross Site Scripting (XSS)

Software WP Social Widget Type Plugin Vulnerable versions = 2.2.5 Fixed in 2.2.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-27189 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID cfbf592152e6 Credits LVT-tholv2k Required privilege...

6.5CVSS6.6AI score0.00337EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder