Heateor Super Socializer — known CVE vulnerabilities
Every CVE whose affected-product data names Heateor Super Socializer, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2024-9946 — CVSS 8.1 (high): The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to authentication bypass…
CVE-2023-35882 — CVSS 6.5 (medium): Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Team Heateor Super Socializer plugin <= 7.13.52 versions.
CVE-2021-24987 — CVSS 6.1 (medium): The Social Share, Social Login and Social Comments Plugin WordPress plugin before 7.13.30 does not sanitise and escape the urls parameter…
CVE-2022-4484 — CVSS 5.4 (medium): The Social Share, Social Login and Social Comments Plugin WordPress plugin before 7.13.44 does not validate and escape some of its…
CVE-2024-13230 — CVSS 5.3 (medium): The Social Share, Social Login and Social Comments Plugin – Super Socializer plugin for WordPress is vulnerable to Limited SQL Injection…
CVE-2024-2836 — CVSS 4.8 (medium): The Social Share, Social Login and Social Comments Plugin WordPress plugin before 7.13.64 does not sanitise and escape some of its…
CVE-2023-41802 — CVSS 4.3 (medium): Missing Authorization vulnerability in Team Heateor Super Socializer allows Exploiting Incorrectly Configured Access Control Security…