Social Share, Social Login and Social Comments Plugin – Super Socializer

Wordfence Intelligence   >   Vulnerability Database   >   WordPress Plugins   >   Social Share, Social Login and Social Comments Plugin – Super Socializer

Information

Software Type Plugin
Software Slug super-socializer (view on wordpress.org)
Software Status Active
Software Author heateor
Software Website super-socializer-wordpress.heateor.com
Software Downloads 3,408,509
Software Active Installs 40,000
Software Record Last Updated September 30, 2023

8 vulnerabilities

Super Socializer <= 7.13.54 - Missing Authorization
4.3
CVE-2023-41802
Sep 5, 2023
Researcher: Rafshanzani Suhada
Super Socializer <= 7.13.54 - Cross-Site Request Forgery
4.3
CVE-2023-41802
Sep 5, 2023
Researcher: Rafshanzani Suhada
Super Socializer <= 7.13.53 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
6.4
CVE ID Unknown
Jul 11, 2023
Researchers:
Super Socializer <= 7.13.52 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
6.4
CVE-2023-35882
Jun 19, 2023
Researcher: Rafshanzani Suhada
Social Share, Social Login and Social Comments <= 7.13.51 - Reflected Cross-Site Scripting
6.1
CVE-2023-2779
May 29, 2023
Researcher: 40826d
Super Socializer <= 7.13.44 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
6.4
CVE-2022-4484
Dec 23, 2022
Researcher: Lana Codes
Social Share, Social Login and Social Comments < 7.13.30 - Reflected Cross-Site Scripting
6.1
CVE-2021-24987
Mar 15, 2022
Researcher: Krzysztof Zając
Social Share, Social Login and Social Comments <= 7.10.6 - Authentication Bypass
9.8
CVE ID Unknown
Mar 3, 2018
Researchers:
Title CVE ID CVSS Researchers Date
Super Socializer <= 7.13.54 - Missing Authorization CVE-2023-41802 4.3 Rafshanzani Suhada September 5, 2023
Super Socializer <= 7.13.54 - Cross-Site Request Forgery CVE-2023-41802 4.3 Rafshanzani Suhada September 5, 2023
Super Socializer <= 7.13.53 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode 6.4 July 11, 2023
Super Socializer <= 7.13.52 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode CVE-2023-35882 6.4 Rafshanzani Suhada June 19, 2023
Social Share, Social Login and Social Comments <= 7.13.51 - Reflected Cross-Site Scripting CVE-2023-2779 6.1 40826d May 29, 2023
Super Socializer <= 7.13.44 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode CVE-2022-4484 6.4 Lana Codes December 23, 2022
Social Share, Social Login and Social Comments < 7.13.30 - Reflected Cross-Site Scripting CVE-2021-24987 6.1 Krzysztof Zając March 15, 2022
Social Share, Social Login and Social Comments <= 7.10.6 - Authentication Bypass 9.8 March 3, 2018

All the threat data shared in this database is powered by Wordfence Intelligence Enterprise.
Interested in integrating this data into your platform or network?
Contact us now to discuss API access to our Wordfence Intelligence Enterprise Data Feeds.

Inquire Now

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation