4 matches found
CVE-2024-27189
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in catchsquare WP Social Widget allows Stored XSS.This issue affects WP Social Widget: from n/a through 2.2.5...
CVE-2024-27189
CVE-2024-27189 affects WordPress WP Social Widget (plugin) versions up to and including 2.2.5, with a Stored XSS due to improper input neutralization during page generation. Public reports confirm the issue (WordPress plugin page and Red Hat/NVD references) and indicate a fix was released in vers...
CVE-2024-27189 WordPress WP Social Widget plugin <= 2.2.5 - Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in catchsquare WP Social Widget allows Stored XSS.This issue affects WP Social Widget: from n/a through 2.2.5...
WordPress WP Social Widget Plugin <= 2.2.5 is vulnerable to Cross Site Scripting (XSS)
Software WP Social Widget Type Plugin Vulnerable versions = 2.2.5 Fixed in 2.2.6 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-27189 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID cfbf592152e6 Credits LVT-tholv2k Required privilege...