Smub Smash Balloon Social Photo Feed – Easy Social Feeds Plugin

2 CVEs affecting Smub Smash Balloon Social Photo Feed – Easy Social Feeds Plugin. Latest disclosed: 2026-07-08. Critical: 0, High: 0.

Top CVEs affecting Smub Smash Balloon Social Photo Feed – Easy Social Feeds Plugin
CVESeverityScorePublishedSummary
CVE-2025-4583Medium5.42025-05-29The Smash Balloon Social Photo Feed – Easy Social Feeds Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `data-plugin` attribut…
CVE-2026-12002Medium4.72026-07-08The Smash Balloon Social Photo Feed – Easy Social Feeds Plugin plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and incl…