Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
patchstackKrzysztof ZającPATCHSTACK:A4DC87C1F1C248B3DFA20C0834AE0D4D
HistoryDec 16, 2021 - 12:00 a.m.

WordPress Smash Balloon Social Post Feed plugin <= 4.1 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability

2021-12-1600:00:00
Krzysztof Zając
patchstack.com
9
wordpress
smash balloon
social post feed
cross-site scripting
xss
krzysztof zając
update

EPSS

0.001

Percentile

30.1%

JSON

Authenticated Reflected Cross-Site Scripting (XSS) vulnerability discovered by Krzysztof Zając in WordPress Smash Balloon Social Post Feed plugin (versions <= 4.1).

Solution

           Update the WordPress Smash Balloon Social Post Feed plugin to the latest available version (at least 4.1.1).

Related

wpvulndb 1
nvd 1
prion 1
openvas 1
cvelist 1
nuclei 1
cve 1
wpexploit 1
wpvulndb
wpvulndb
Smash Balloon Social Post Feed < 4.1.1 - Authenticated Reflected Cross-Site Scripting (XSS)
2021-12-16 00:00:00
nvd
nvd
CVE-2021-25065
2022-01-17 13:15:08
prion
prion
Cross site scripting
2022-01-17 13:15:00
openvas
openvas
WordPress Smash Balloon Social Post Feed Plugin < 4.1.1 XSS Vulnerability
2022-01-18 00:00:00
cvelist
cvelist
CVE-2021-25065 Smash Balloon Social Post Feed < 4.1.1 - Authenticated Reflected Cross-Site Scripting (XSS)
2022-01-17 13:00:40
nuclei
nuclei
Smash Balloon Social Post Feed < 4.1.1 - Authenticated Reflected Cross-Site Scripting
2023-08-14 12:29:50
cve
cve
CVE-2021-25065
2022-01-17 13:15:08
wpexploit
wpexploit
Smash Balloon Social Post Feed < 4.1.1 - Authenticated Reflected Cross-Site Scripting (XSS)
2021-12-16 00:00:00

EPSS

0.001

Percentile

30.1%

JSON
Related for PATCHSTACK:A4DC87C1F1C248B3DFA20C0834AE0D4D
wpvulndb1nvd1prion1openvas1cvelist1nuclei1cve1wpexploit1