Social Warfare@* Security Vulnerabilities and Issues — Social Warfare@* CVE List

Lucene search

WarfarepluginsSocial Warfare*

3 matches found

CVE•added 2019/03/24 3:29 p.m.•1215 views

CVE-2019-9978

The social-warfare plugin before 3.5.3 for WordPress has stored XSS via the wp-admin/admin-post.php?swp_debug=load_options swp_url parameter, as exploited in the wild in March 2019. This affects Social Warfare and Social Warfare Pro.

6.1CVSS6AI score0.88097EPSS

In wildWeb

CVE•added 2024/01/17 9:15 a.m.•50 views

CVE-2021-4434

The Social Warfare plugin for WordPress is vulnerable to Remote Code Execution in versions up to, and including, 3.5.2 via the 'swp_url' parameter. This allows attackers to execute code on the server.

10CVSS9.7AI score0.07986EPSS

CVE•added 2023/01/19 3:15 p.m.•41 views

CVE-2023-0403

The Social Warfare plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 4.4.0. This is due to missing or incorrect nonce validation on several AJAX actions. This makes it possible for unauthenticated attackers to delete post meta information and reset n...

5.4CVSS5.1AI score0.00043EPSS

Web