Wp Social Widget Security Vulnerabilities and Issues — Wp Social Widget CVE List

Lucene search

CatchsquareWp Social Widget

4 matches found

CVE•added 2024/03/15 1:15 p.m.•61 views

CVE-2024-27189

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in catchsquare WP Social Widget allows Stored XSS.This issue affects WP Social Widget: from n/a through 2.2.5.

6.5CVSS6.7AI score0.00062EPSS

CVE•added 2025/03/24 2:15 p.m.•54 views

CVE-2025-30610

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in catchsquare WP Social Widget allows Stored XSS. This issue affects WP Social Widget: from n/a through 2.2.6.

6.5CVSS6.9AI score0.00062EPSS

CVE•added 2023/01/30 9:15 p.m.•47 views

CVE-2023-0074

The WP Social Widget WordPress plugin before 2.2.4 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks.

5.4CVSS5.3AI score0.00144EPSS

CVE•added 2025/06/06 1:15 p.m.•35 views

CVE-2025-49306

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in catchsquare WP Social Widget allows Stored XSS. This issue affects WP Social Widget: from n/a through 2.3.

6.5CVSS6.4AI score0.00039EPSS