4 matches found
WordPress Social Slider Feed plugin < 2.2.9 - Admin+ Stored XSS vulnerability
Admin+ Stored XSS vulnerability discovered by Krugov Artyom in WordPress Plugin Social Slider Feed versions 2.2.9...
CVE-2025-0717
To exploit the vulnerability, it is necessary:...
CVE-2025-0717
CVE-2025-0717 affects the WordPress plugin Social Slider Feed until version 2.2.9 (older releases are vulnerable to Admin+ Stored XSS). The issue is triggered in the plugin’s admin context and can be mitigated by upgrading to 2.2.9 or newer (or applying vendor-recommended remediation).
CVE-2025-0717 Social Slider Feed < 2.2.9 - Admin+ Stored XSS
To exploit the vulnerability, it is necessary:...