Feed Them Social – Page, Post, Video, and Photo Galleries

Wordfence Intelligence   >   Vulnerability Database   >   WordPress Plugins   >   Feed Them Social – Page, Post, Video, and Photo Galleries

Information

Software Type Plugin
Software Slug feed-them-social (view on wordpress.org)
Software Status Active
Software Author slickremix
Software Website feedthemsocial.com
Software Downloads 3,920,476
Software Active Installs 30,000
Software Record Last Updated April 26, 2024

13 Vulnerabilities

Feed Them Social <= 4.2.0 - Cross-Site Request Forgery via review_nag_check
3.5
CVE-2024-24710
Jan 31, 2024
Researcher: Abdi Pranata
Feed Them Social <= 4.0.7 - Cross-Site Request Forgery
4.3
CVE ID Unknown
Mar 29, 2023
Researchers:
Feed Them Social <= 3.0.2 - Cross-Site Request Forgery
5.4
CVE-2023-25056
Feb 21, 2023
Researcher: Rio Darmawan
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.9 - Subscriber+ Stored Cross-Site Scripting
6.1
CVE-2022-2940
Nov 14, 2022
Researcher: Marco Wotschka
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.9 - Cross-Site Request Forgery to Settings update
8.8
CVE-2022-2942
Nov 14, 2022
Researcher: Marco Wotschka
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.9 - Reflected Cross-Site Scripting
6.1
CVE-2022-2383
Jul 26, 2022
Researcher: dc11
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.9 - Subscriber+ Stored Cross-Site Scripting
6.1
CVE-2022-2532
Jul 26, 2022
Researcher: Krzysztof Zając
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.8.5 - Unauthenticated PHAR Deserialization
9.8
CVE-2022-2437
Jul 12, 2022
Researcher: Rasoul Jahanshahi
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.8.5 - Cross-Site Request Forgery to Plugin Settings Update
9.8
CVE ID Unknown
Jul 12, 2022
Researchers:
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.9 - Reflected Cross-Site Scripting
6.1
CVE-2022-2383
Jul 12, 2022
Researcher: dc11
Feed Them Social – Page, Post, Video, and Photo Galleries <= 2.8.6 - Cross-Site Request Forgery Bypass
4.3
CVE-2020-36739
Sep 16, 2020
Researcher: Jerome Bruandet
Feed Them Social <= 1.6.9 - Arbitrary Shortcode Execution
9.8
CVE-2015-9351
Feb 2, 2015
Researcher: James Hooker
Feed Them Social <= 1.6.9 - Reflected Cross-Site Scripting
6.1
CVE-2015-9350
Feb 2, 2015
Researcher: James Hooker
Title CVE ID CVSS Researchers Date
Feed Them Social <= 4.2.0 - Cross-Site Request Forgery via review_nag_check CVE-2024-24710 3.5 Abdi Pranata January 31, 2024
Feed Them Social <= 4.0.7 - Cross-Site Request Forgery 4.3 March 29, 2023
Feed Them Social <= 3.0.2 - Cross-Site Request Forgery CVE-2023-25056 5.4 Rio Darmawan February 21, 2023
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.9 - Subscriber+ Stored Cross-Site Scripting CVE-2022-2940 6.1 Marco Wotschka November 14, 2022
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.9 - Cross-Site Request Forgery to Settings update CVE-2022-2942 8.8 Marco Wotschka November 14, 2022
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.9 - Reflected Cross-Site Scripting CVE-2022-2383 6.1 dc11 July 26, 2022
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.9 - Subscriber+ Stored Cross-Site Scripting CVE-2022-2532 6.1 Krzysztof Zając July 26, 2022
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.8.5 - Unauthenticated PHAR Deserialization CVE-2022-2437 9.8 Rasoul Jahanshahi July 12, 2022
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.8.5 - Cross-Site Request Forgery to Plugin Settings Update 9.8 July 12, 2022
Feed Them Social – for Twitter feed, Youtube and more <= 2.9.9 - Reflected Cross-Site Scripting CVE-2022-2383 6.1 dc11 July 12, 2022
Feed Them Social – Page, Post, Video, and Photo Galleries <= 2.8.6 - Cross-Site Request Forgery Bypass CVE-2020-36739 4.3 Jerome Bruandet September 16, 2020
Feed Them Social <= 1.6.9 - Arbitrary Shortcode Execution CVE-2015-9351 9.8 James Hooker February 2, 2015
Feed Them Social <= 1.6.9 - Reflected Cross-Site Scripting CVE-2015-9350 6.1 James Hooker February 2, 2015

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation