4 matches found
WordPress Sassy Social Share plugin <= 3.3.75 - Reflected Cross-Site Scripting via 'heateor_mastodon_share' Parameter vulnerability
Reflected Cross-Site Scripting via 'heateormastodonshare' Parameter vulnerability discovered by Naveen H N in WordPress Plugin Sassy Social Share versions = 3.3.75...
CVE-2025-5528
creationtimestamp| type| source ---|---|--- 2025-06-07 15:07:57+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqzmv4vs7p2c 2025-06-09 16:56:11+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17707...
CVE-2025-5528 Social Sharing Plugin – Sassy Social Share <= 3.3.75 - Reflected Cross-Site Scripting via 'heateor_mastodon_share' Parameter
The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the heateormastodonshare parameter in all versions up to, and including, 3.3.75 due to insufficient input sanitization and output escaping. This makes it possible for...
CVE-2025-5528 Social Sharing Plugin – Sassy Social Share <= 3.3.75 - Reflected Cross-Site Scripting via 'heateor_mastodon_share' Parameter
The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the heateormastodonshare parameter in all versions up to, and including, 3.3.75 due to insufficient input sanitization and output escaping. This makes it possible for...