Super Socializer < 7.13.52 - Cross-Site Scripting

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. id: CVE-2023-2779 info: name: Super Socializer 7.13.52 - Cross-Site Scripting author: r3Y3r53...

EUVD-2023-39875

Malicious code in bioql PyPI...

EUVD-2024-51448

Malicious code in bioql PyPI...

EUVD-2023-46294

Malicious code in bioql PyPI...

CVE-2023-41802

Missing Authorization vulnerability in Team Heateor Super Socializer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Socializer: from n/a through 7.13.54...

CVE-2023-35882

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Team Heateor Super Socializer plugin = 7.13.52 versions...

CVE-2024-13230

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Limited SQL Injection via the ‘SuperSocializerKey’ parameter in all versions up to, and including, 7.14 due to insufficient escaping on the user supplied parameter and lack of...

CVE-2024-13230

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Limited SQL Injection via the ‘SuperSocializerKey’ parameter in all versions up to, and including, 7.14 due to insufficient escaping on the user supplied parameter and lack of...

CVE-2024-13230 Social Share, Social Login and Social Comments Plugin – Super Socializer <= 7.14 - Unauthenticated Limited SQL Injection via 'SuperSocializerKey'

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Limited SQL Injection via the ‘SuperSocializerKey’ parameter in all versions up to, and including, 7.14 due to insufficient escaping on the user supplied parameter and lack of...

CVE-2024-13230

CVE-2024-13230 affects the WordPress plugin “Social Share, Social Login and Social Comments Plugin – Super Socializer” up to version 7.14. The issue is a limited SQL injection via the SuperSocializerKey parameter caused by insufficient escaping of user input and inadequate preparation of the SQL ...

WordPress Super Socializer plugin <= 7.14 - Unauthenticated Limited SQL Injection via 'SuperSocializerKey' vulnerability

Unauthenticated Limited SQL Injection via 'SuperSocializerKey' vulnerability discovered by mikemyers in WordPress Plugin Super Socializer versions = 7.14...

WordPress plugin Super Socializer SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

PT-2025-2081 · WordPress · Super Socializer

Name of the Vulnerable Software and Affected Versions: Super Socializer plugin for WordPress versions up to, and including, 7.14 Description: The issue is related to a Limited SQL Injection vulnerability via the SuperSocializerKey parameter. This vulnerability is caused by insufficient escaping o...

CVE-2023-41802

Missing Authorization vulnerability in Team Heateor Super Socializer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Socializer: from n/a through 7.13.54...

CVE-2023-41802

Missing Authorization vulnerability in Team Heateor Super Socializer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Socializer: from n/a through 7.13.54...

CVE-2023-41802 WordPress Super Socializer plugin <= 7.13.54 - Broken Access Control vulnerability

Missing Authorization vulnerability in Team Heateor Super Socializer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Socializer: from n/a through 7.13.54...

PT-2024-12976 · Unknown · Super Socializer

Name of the Vulnerable Software and Affected Versions: Super Socializer versions 7.13 through 7.13.54 Description: The issue involves a broken access control vulnerability, allowing exploitation of incorrectly configured access control security levels. This vulnerability exposes user data to risk...

WordPress plugin Super Socializer 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

CVE-2024-9946

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.13.68. This is due to insufficient verification on the user being returned by the social login token. This makes it...

CVE-2024-9946 Social Share, Social Login and Social Comments Plugin – Super Socializer <= 7.13.68 - Authentication Bypass via Disqus OAuth provider

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 7.13.68. This is due to insufficient verification on the user being returned by the social login token. This makes it...