Vulnerabilities > Wpsocialrocket

DATE	CVE	VULNERABILITY TITLE	RISK
2022-10-10	CVE-2022-3136	Cross-site Scripting vulnerability in Wpsocialrocket Social Rocket The Social Rocket WordPress plugin before 1.3.3 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfiltered_html capability is disallowed (for example in multisite setup) network low complexity wpsocialrocket CWE-79	4.8
2020-07-27	CVE-2020-5611	Cross-Site Request Forgery (CSRF) vulnerability in Wpsocialrocket Social Sharing Cross-site request forgery (CSRF) vulnerability in Social Sharing Plugin versions prior to 1.2.10 allows remote attackers to hijack the authentication of administrators via unspecified vectors. network wpsocialrocket CWE-352	6.8

Vulnerabilities > Wpsocialrocket {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Wpsocialrocket"}]}