← Back

Social Comments

social_comments

Vendor: Wpdevart • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2022-0876
1Wpdevart
1Social Comments
Jun 17, 2026
Apr 25, 2022
N/A· v4
4.8 MEDIUM· v3
3.5 LOW· v2
The Social comments by WpDevArt WordPress plugin before 2.5.0 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when unfiltered_html is di...Show more
The Social comments by WpDevArt WordPress plugin before 2.5.0 does not sanitise and escape its settings, allowing high privilege users such as admin to perform cross-Site Scripting attacks even when unfiltered_html is disallowedShow less