Lucene search
K

55 matches found

Nuclei
Nuclei
added yesterday44 views

Super Socializer < 7.13.52 - Cross-Site Scripting

The plugin does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin. id: CVE-2023-2779 info: name: Super Socializer 7.13.52 - Cross-Site Scripting author: r3Y3r53...

6.1CVSS6.7AI score0.05991EPSS
Exploits4References4
NVD
NVD
added 6 days ago9 views

CVE-2026-11798

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'heateormastodonshare' parameter in all versions up to, and including, 7.14.5 due to insufficient input sanitization and output escaping. This...

6.1CVSS0.00204EPSS
Exploits0References3
EUVD
EUVD
added 6 days ago8 views

EUVD-2026-42168

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'heateormastodonshare' parameter in all versions up to, and including, 7.14.5 due to insufficient input sanitization and output escaping. This...

6.1CVSS6.1AI score0.00204EPSS
Exploits0References3
Cvelist
Cvelist
added 6 days ago34 views

CVE-2026-11798 Social Share, Social Login and Social Comments Plugin <= 7.14.5 - Reflected Cross-Site Scripting via 'heateor_mastodon_share' Parameter

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'heateormastodonshare' parameter in all versions up to, and including, 7.14.5 due to insufficient input sanitization and output escaping. This...

6.1CVSS0.00204EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-51448

Malicious code in bioql PyPI...

5.3CVSS8.9AI score0.00423EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-39875

Malicious code in bioql PyPI...

6.5CVSS6.6AI score0.00416EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2023-46294

Malicious code in bioql PyPI...

4.3CVSS9AI score0.00554EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:38 a.m.10 views

CVE-2023-41802

Missing Authorization vulnerability in Team Heateor Super Socializer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Socializer: from n/a through 7.13.54...

4.3CVSS8.5AI score0.00554EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/23 4:37 a.m.7 views

CVE-2023-35882

Auth. contributor+ Stored Cross-Site Scripting XSS vulnerability in Team Heateor Super Socializer plugin = 7.13.52 versions...

6.5CVSS5.6AI score0.00416EPSS
Exploits0
OSV
OSV
added 2025/01/21 11:15 a.m.4 views

CVE-2024-13230

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Limited SQL Injection via the ‘SuperSocializerKey’ parameter in all versions up to, and including, 7.14 due to insufficient escaping on the user supplied parameter and lack of...

5.3CVSS5.8AI score0.00423EPSS
Exploits0References3
NVD
NVD
added 2025/01/21 11:15 a.m.21 views

CVE-2024-13230

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Limited SQL Injection via the ‘SuperSocializerKey’ parameter in all versions up to, and including, 7.14 due to insufficient escaping on the user supplied parameter and lack of...

5.3CVSS0.00423EPSS
Exploits0References3
CVE
CVE
added 2025/01/21 11:9 a.m.53 views

CVE-2024-13230

CVE-2024-13230 affects the WordPress plugin “Social Share, Social Login and Social Comments Plugin – Super Socializer” up to version 7.14. The issue is a limited SQL injection via the SuperSocializerKey parameter caused by insufficient escaping of user input and inadequate preparation of the SQL ...

5.3CVSS8.2AI score0.00423EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2025/01/21 11:9 a.m.30 views

CVE-2024-13230 Social Share, Social Login and Social Comments Plugin – Super Socializer <= 7.14 - Unauthenticated Limited SQL Injection via 'SuperSocializerKey'

The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Limited SQL Injection via the ‘SuperSocializerKey’ parameter in all versions up to, and including, 7.14 due to insufficient escaping on the user supplied parameter and lack of...

5.3CVSS0.00423EPSS
Exploits0References3
Patchstack
Patchstack
added 2025/01/21 1:12 a.m.6 views

WordPress Super Socializer plugin <= 7.14 - Unauthenticated Limited SQL Injection via 'SuperSocializerKey' vulnerability

Unauthenticated Limited SQL Injection via 'SuperSocializerKey' vulnerability discovered by mikemyers in WordPress Plugin Super Socializer versions = 7.14...

5.3CVSS8.1AI score0.00423EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2025/01/21 12:0 a.m.6 views

WordPress plugin Super Socializer SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection...

5.3CVSS9AI score0.00423EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/01/21 12:0 a.m.8 views

PT-2025-2081 · WordPress · Super Socializer

Name of the Vulnerable Software and Affected Versions: Super Socializer plugin for WordPress versions up to, and including, 7.14 Description: The issue is related to a Limited SQL Injection vulnerability via the SuperSocializerKey parameter. This vulnerability is caused by insufficient escaping o...

5.3CVSS8.5AI score0.00423EPSS
Exploits0References10
OSV
OSV
added 2024/12/13 3:15 p.m.7 views

CVE-2023-41802

Missing Authorization vulnerability in Team Heateor Super Socializer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Socializer: from n/a through 7.13.54...

4.3CVSS5.8AI score0.00554EPSS
Exploits0References1
NVD
NVD
added 2024/12/13 3:15 p.m.11 views

CVE-2023-41802

Missing Authorization vulnerability in Team Heateor Super Socializer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Socializer: from n/a through 7.13.54...

4.3CVSS0.00554EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/12/13 2:24 p.m.20 views

CVE-2023-41802 WordPress Super Socializer plugin <= 7.13.54 - Broken Access Control vulnerability

Missing Authorization vulnerability in Team Heateor Super Socializer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Super Socializer: from n/a through 7.13.54...

4.3CVSS0.00554EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/12/13 12:0 a.m.10 views

WordPress plugin Super Socializer 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plug-in. A security vulnerability...

4.3CVSS8.5AI score0.00554EPSS
Exploits0References1
Rows per page
Query Builder