Heateor Super_socializer
7 CVEs affecting Heateor Super_socializer. Latest disclosed: 2025-01-21. Critical: 0, High: 1.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-9946 | High | 8.1 | 2024-11-06 | The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to authentication bypass in all versions up to… |
CVE-2023-35882 | Medium | 6.5 | 2023-06-20 | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Team Heateor Super Socializer plugin <= 7.13.52 versions. |
CVE-2021-24987 | Medium | 6.1 | 2022-04-11 | The Social Share, Social Login and Social Comments Plugin WordPress plugin before 7.13.30 does not sanitise and escape the urls parameter in its the_champ_shar… |
CVE-2022-4484 | Medium | 5.4 | 2023-01-16 | The Social Share, Social Login and Social Comments Plugin WordPress plugin before 7.13.44 does not validate and escape some of its shortcode attributes before… |
CVE-2024-13230 | Medium | 5.3 | 2025-01-21 | The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Limited SQL Injection via the ‘SuperSocializ… |
CVE-2024-2836 | Medium | 4.8 | 2024-04-15 | The Social Share, Social Login and Social Comments Plugin WordPress plugin before 7.13.64 does not sanitise and escape some of its settings, which could allow… |
CVE-2023-41802 | Medium | 4.3 | 2024-12-13 | Missing Authorization vulnerability in Team Heateor Super Socializer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects… |