Vulnerabilities > CVE-2021-24956 - Unspecified vulnerability in Adenion Blog2Social

047910
CVSS 6.1 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
LOW
Integrity impact
LOW
Availability impact
NONE
network
low complexity
adenion
NVD
Published: 2021-12-21
Updated: 2024-11-21

Summary

The Blog2Social: Social Media Auto Post & Scheduler WordPress plugin before 6.8.7 does not sanitise and escape the b2sShowByDate parameter before outputting it back in an admin page, leading to a Reflected Cross-Site Scripting issue

Vulnerable Configurations

Part Description Count
Application
Adenion
78

References