Lucene search
+L

125 matches found

Nuclei
Nuclei
added yesterday75 views

WordPress Sassy Social Share Plugin <3.3.40 - Cross-Site Scripting

WordPress plugin Sassy Social Share 3.3.40 contains a reflected cross-site scripting vulnerability. id: CVE-2021-24746 info: name: WordPress Sassy Social Share Plugin 3.3.40 - Cross-Site Scripting author: Supras severity: medium description: WordPress plugin Sassy Social Share 3.3.40 contains a...

6.1CVSS5.8AI score0.02244EPSS
Exploits2References3
Nuclei
Nuclei
added yesterday19 views

Sassy Social Share <= 3.3.3 - Cross-Site Scripting

The Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'urls' parameter called via the 'heateorssssharingcount' AJAX action in versions up to, and including, 3.3.3 due to insufficient input sanitization and output escaping. This makes it possible for...

6.1CVSS5.5AI score0.1544EPSS
Exploits1References3
NVD
NVD
added 2026/07/08 6:16 a.m.9 views

CVE-2026-11798

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'heateormastodonshare' parameter in all versions up to, and including, 7.14.5 due to insufficient input sanitization and output escaping. This...

6.1CVSS0.00204EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/08 5:34 a.m.8 views

EUVD-2026-42168

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'heateormastodonshare' parameter in all versions up to, and including, 7.14.5 due to insufficient input sanitization and output escaping. This...

6.1CVSS6.1AI score0.00204EPSS
Exploits0References3
CVE
CVE
added 2026/07/08 5:34 a.m.14 views

CVE-2026-11798

The CVE concerns the WordPress plugin Social Share, Social Login and Social Comments Plugin – Super Socializer . It is vulnerable to Reflected Cross-Site Scripting via the parameter heateor_mastodon_share in all versions up to and including 7.14.5 , caused by insufficient input sanitization and o...

6.1CVSS6.1AI score0.00204EPSS
Exploits0References3
NVD
NVD
added 2026/07/02 12:17 p.m.8 views

CVE-2026-57751

Unauthenticated Cross Site Request Forgery CSRF in Heateor Social Login = 1.1.39 versions...

8.1CVSS0.00139EPSS
Exploits0References1
CVE
CVE
added 2026/07/02 11:15 a.m.17 views

CVE-2026-57751

The CVE-2026-57751 entry concerns the WordPress plugin Heateor Social Login (versions

8.1CVSS5.8AI score0.00139EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/07/02 11:15 a.m.41 views

CVE-2026-57751 WordPress Heateor Social Login plugin <= 1.1.39 - Cross Site Request Forgery (CSRF) vulnerability

Unauthenticated Cross Site Request Forgery CSRF in Heateor Social Login = 1.1.39 versions...

8.1CVSS0.00139EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/07/02 12:0 a.m.9 views

PT-2026-55039

Name of the Vulnerable Software and Affected Versions Heateor Social Login versions prior to 1.1.40 Description An unauthenticated Cross Site Request Forgery CSRF issue exists in the Heateor Social Login plugin. CSRF is a flaw that allows an attacker to trick a victim into performing actions they...

8.1CVSS6AI score0.00139EPSS
Exploits0References4
Patchstack
Patchstack
added 2026/07/01 1:18 p.m.7 views

WordPress Heateor Social Login plugin <= 1.1.39 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by ParkHyunWoo in WordPress Plugin Heateor Social Login versions = 1.1.39...

8.1CVSS5.8AI score0.00139EPSS
Exploits0Affected Software1
RedhatCVE
RedhatCVE
added 2025/12/31 11:5 a.m.5 views

CVE-2025-68998

Cross-Site Request Forgery CSRF vulnerability in Heateor Support Heateor Social Login heateor-social-login allows Cross Site Request Forgery.This issue affects Heateor Social Login: from n/a through = 1.1.39...

5.4CVSS6.9AI score0.00104EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/30 12:30 p.m.4 views

EUVD-2025-205738

Cross-Site Request Forgery CSRF vulnerability in Heateor Support Heateor Social Login heateor-social-login allows Cross Site Request Forgery.This issue affects Heateor Social Login: from n/a through = 1.1.39...

5.4CVSS6.3AI score0.00104EPSS
Exploits0References2
NVD
NVD
added 2025/12/30 11:15 a.m.3 views

CVE-2025-68998

Cross-Site Request Forgery CSRF vulnerability in Heateor Support Heateor Social Login heateor-social-login allows Cross Site Request Forgery.This issue affects Heateor Social Login: from n/a through = 1.1.39...

5.4CVSS0.00104EPSS
Exploits0References1
CVE
CVE
added 2025/12/30 10:47 a.m.6 views

CVE-2025-68998

CVE-2025-68998 technical details are not publicly provided in the supplied documents. Monitor for updates from vendors and researchers to assess impact and remediation.

5.4CVSS6.5AI score0.00104EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/12/30 10:47 a.m.2 views

CVE-2025-68998 WordPress Heateor Social Login plugin <= 1.1.39 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Heateor Support Heateor Social Login heateor-social-login allows Cross Site Request Forgery.This issue affects Heateor Social Login: from n/a through = 1.1.39...

5.4CVSS6.5AI score0.00104EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/30 10:47 a.m.27 views

CVE-2025-68998 WordPress Heateor Social Login plugin <= 1.1.39 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Heateor Support Heateor Social Login heateor-social-login allows Cross Site Request Forgery.This issue affects Heateor Social Login: from n/a through = 1.1.39...

5.4CVSS0.00104EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/12/30 12:0 a.m.3 views

WordPress plugin Heateor Social Login 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

5.4CVSS5.7AI score0.00104EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/12/30 12:0 a.m.5 views

PT-2025-53887

Name of the Vulnerable Software and Affected Versions Heateor Social Login versions through 1.1.39 Description The software contains a Cross-Site Request Forgery CSRF flaw. This allows attackers to potentially perform actions on behalf of authenticated users without their knowledge. Recommendatio...

5.4CVSS6.5AI score0.00104EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/12/26 4:50 a.m.6 views

WordPress Heateor Social Login plugin <= 1.1.39 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Heateor Social Login versions = 1.1.39...

5.4CVSS7AI score0.00104EPSS
Exploits0Affected Software1
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2024-22111

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00317EPSS
Exploits0References1
Rows per page
Query Builder