Wpzoom ≫ Social Icons Widget

2 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

8.8

CVE-2024-30464

EPSS 0.16%
Published 09.06.2024 11:15:50
Last modified 21.11.2024 09:11:58

Missing Authorization vulnerability in WPZOOM Social Icons Widget & Block by WPZOOM.This issue affects Social Icons Widget & Block by WPZOOM: from n/a through 4.2.15.

6.1

CVE-2024-2189

Exploit

EPSS 0.22%
Published 21.05.2024 06:15:08
Last modified 21.05.2025 19:00:04

The Social Icons Widget & Block by WPZOOM WordPress plugin before 4.2.18 does not sanitise and escape some of its Widget settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfil...