Nextscripts Social Networks Auto Poster — known CVE vulnerabilities
Every CVE whose affected-product data names Nextscripts Social Networks Auto Poster, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2024-2088 — CVSS 8.5 (high): The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to…
CVE-2024-37275 — CVSS 7.1 (high): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NextScripts NextScripts…
CVE-2023-49183 — CVSS 7.1 (high): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in NextScripts NextScripts: Social…
CVE-2021-25072 — CVSS 6.5 (medium): The NextScripts: Social Networks Auto-Poster WordPress plugin before 4.3.25 does not have CSRF check in place when deleting items, allowing…
CVE-2021-24975 — CVSS 6.1 (medium): The NextScripts: Social Networks Auto-Poster WordPress plugin before 4.3.24 does not sanitise and escape logged requests before outputting…
CVE-2021-38356 — CVSS 6.1 (medium): The NextScripts: Social Networks Auto-Poster <= 4.3.20 WordPress plugin is vulnerable to Reflected Cross-Site Scripting via the…
CVE-2019-9911 — CVSS 6.1 (medium): The social-networks-auto-poster-facebook-twitter-g plugin before 4.2.8 for WordPress has wp-admin/admin.php?page=nxssnap-reposter&action=edi…
CVE-2024-1762 — CVSS 6.1 (medium): The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the HTTP_USER_AGENT…
CVE-2024-1446 — CVSS 5.4 (medium): The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and…
CVE-2020-36831 — CVSS 5.0 (medium): The NextScripts: Social Networks Auto-Poster plugin for WordPress is vulnerable to authorization bypass due to missing capability checks on…