Kiwi Social Share Security Vulnerabilities and Issues — Kiwi Social Share CVE List

Lucene search

WpkubeKiwi Social Share

3 matches found

cve•added 2024/07/09 9:15 a.m.•44 views

CVE-2024-3228

The Social Sharing Plugin – Kiwi plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 2.1.7 via the 'kiwi-nw-pinterest' class. This makes it possible for unauthenticated attackers to view limited content from password protected posts.

5.3CVSS5.7AI score0.00629EPSS

cve•added 2023/06/07 2:15 a.m.•29 views

CVE-2021-4362

The Kiwi Social Share plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the kiwi_social_share_get_option() function called via the kiwi_social_share_get_option AJAX action in version 2.1.0. This makes it possible for unauthenticated attackers to read an...

9.8CVSS9.2AI score0.00701EPSS

cve•added 5 days ago•2 views

CVE-2025-58790

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WPKube Kiwi allows Stored XSS. This issue affects Kiwi: from n/a through 2.1.8.

6.5CVSS5.3AI score0.00033EPSS