Easy Social Feed Security Vulnerabilities and Issues — Easy Social Feed CVE List

Lucene search

EasysocialfeedEasy Social Feed

5 matches found

CVE•added 2024/03/31 7:15 p.m.•52 views

CVE-2024-30526

Cross-Site Request Forgery (CSRF) vulnerability in Easy Social Feed.This issue affects Easy Social Feed: from n/a through 6.5.6.

4.3CVSS5AI score0.0007EPSS

CVE•added 2024/03/27 12:15 p.m.•50 views

CVE-2024-30180

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Easy Social Feed allows Stored XSS.This issue affects Easy Social Feed: from n/a through 6.5.3.

6.5CVSS6.7AI score0.00145EPSS

CVE•added 2024/03/21 2:51 a.m.•47 views

CVE-2024-1213

The Easy Social Feed – Social Photos Gallery – Post Feed – Like Box plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.5.4. This is due to missing or incorrect nonce validation on the esf_insta_save_access_token and efbl_save_facebook_access_tok...

5.4CVSS6.1AI score0.0008EPSS

CVE•added 2024/03/21 2:51 a.m.•44 views

CVE-2024-1214

The Easy Social Feed – Social Photos Gallery – Post Feed – Like Box plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 6.5.4. This is due to missing or incorrect nonce validation on the save_groups_list function. This makes it possible for unauthe...

4.3CVSS5.2AI score0.00102EPSS

CVE•added 2024/03/21 2:51 a.m.•31 views

CVE-2024-1278

The Easy Social Feed – Social Photos Gallery – Post Feed – Like Box plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'efb_likebox' shortcode in all versions up to, and including, 6.5.4 due to insufficient input sanitization and output escaping on user supplied attr...

6.4CVSS6AI score0.00134EPSS