4 matches found
CVE-2025-22706 WordPress Social Pug: Author Box plugin <= 1.0.0 - Reflected Cross Site Scripting (XSS) vulnerability
Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in iova.mihai Social Pug: Author Box allows Reflected XSS. This issue affects Social Pug: Author Box: from n/a through 1.0.0...
WordPress plugin Social Pug: Author Box 跨站脚本漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress plugin Social Pug: A cross-site...
WordPress Social Pug Plugin < 1.33.1 is vulnerable to Sensitive Data Exposure
Software Social Pug Type Plugin Vulnerable versions 1.33.1 Fixed in 1.33.1 OWASP Top 10 A5: Broken Access Control Classification Sensitive Data Exposure CVE CVE-2024-1526 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID ac219e9d734d Credits Krzysztof Zając CERT PL Required...
WordPress Social Pug Plugin <= 1.33.1 is vulnerable to PHP Object Injection
Software Social Pug Type Plugin Vulnerable versions = 1.33.1 Fixed in 1.33.2 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2024-2501 Patch priority Medium CVSS severity Medium 8.5 Developer Claim ownership PSID 888eaee51d8b Credits Webbernaut Required privilege Contributo...