Social Warfare Security Vulnerabilities and Issues — Social Warfare CVE List

Lucene search

WarfarepluginsSocial Warfare

3 matches found

CVE•added 2019/03/24 3:29 p.m.•1195 views

CVE-2019-9978

The social-warfare plugin before 3.5.3 for WordPress has stored XSS via the wp-admin/admin-post.php?swp_debug=load_options swp_url parameter, as exploited in the wild in March 2019. This affects Social Warfare and Social Warfare Pro.

6.1CVSS6AI score0.87697EPSS

CVE•added 2023/11/07 12:15 p.m.•66 views

CVE-2023-4842

The Social Sharing Plugin - Social Warfare plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'social_warfare' shortcode in versions up to, and including, 4.4.3 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for auth...

6.4CVSS5.3AI score0.00148EPSS

CVE•added 2025/02/22 4:15 p.m.•49 views

CVE-2025-26973

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WarfarePlugins Social Warfare allows DOM-Based XSS. This issue affects Social Warfare: from n/a through 4.5.4.

6.5CVSS6.5AI score0.00044EPSS