Heateor Social Sharing Plugin – Sassy Social Share

5 CVEs affecting Heateor Social Sharing Plugin – Sassy Social Share. Latest disclosed: 2025-06-07. Critical: 0, High: 0.

Top CVEs affecting Heateor Social Sharing Plugin – Sassy Social Share
CVESeverityScorePublishedSummary
CVE-2024-1989Medium6.42024-03-06The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'Sassy_Social_Share' shortcod…
CVE-2024-1448Medium6.42024-02-29The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's shortcode(s) in all versions…
CVE-2025-5528Medium6.12025-06-07The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the heateor_mastodon_share parameter in…
CVE-2024-11252Medium6.12024-11-30The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the heateor_mastodon_share parameter in…
CVE-2022-4971Medium6.12024-10-16The Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'urls' parameter called via the 'heateor_sss_sharing_count'…