cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches forwonderm00ns-simple-facebook-open-graph-tags wonderm00ns-simple-facebook-open-graph-tags

Direction: ascending
Jun 07, 2024

Open Graph and Twitter Card Tags # CVE-2018-0579

CVE, Research URL

CVE-2018-0579

Home page URL

Security reports for Open Graph and Twitter Card Tags

Application

Open Graph and Twitter Card Tags

Date
May 14, 2018
Research Description
Cross-site scripting vulnerability in Open Graph for Facebook, Google+ and Twitter Card Tags plugin prior to version 2.2.4.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Affected versions
max 2.2.4.1.
Status
vulnerable
Jun 16, 2026

Open Graph and Twitter Card Tags # 891309bc-6353-4a91-bcfe-4864df258913

CVE, Research URL

891309bc-6353-4a91-bcfe-4864df258913

Home page URL

Security reports for Open Graph and Twitter Card Tags

Application

Open Graph and Twitter Card Tags

Date
-
Research Description
Open Graph and Twitter Card Tags [wonderm00ns-simple-facebook-open-graph-tags] < 2.2.4.2 Open Graph for Facebook, Google+ and Twitter Card Tags &lt;= 2.2.4.1 - Unauthenticated Cross-Site Scripting (XSS) The Open Graph and Twitter Card Tags WordPress plugin was affected by an Unauthenticated Cross-Site Scripting (XSS) security vulnerability.
Affected versions
max 2.2.4.2.
Status
vulnerable

Open Graph and Twitter Card Tags # 94d86780b701970829bbefba21941f3d698e59be

CVE, Research URL

94d86780b701970829bbefba21941f3d698e59be

Home page URL

Security reports for Open Graph and Twitter Card Tags

Application

Open Graph and Twitter Card Tags

Date
Jun 22, 2018
Research Description
Open Graph and Twitter Card Tags [wonderm00ns-simple-facebook-open-graph-tags] < 2.2.4.1 WordPress Open Graph for Facebook, Google+ and Twitter Card Tags plugin <= 2.2.4 - Authenticated Reflected Cross-Site Scripting (XSS) vulnerability Authenticated Reflected Cross-Site Scripting (XSS) vulnerability found in WordPress Open Graph for Facebook, Google+ and Twitter Card Tags plugin (versions <= 2.2.4).
Affected versions
max 2.2.4.1.
Status
vulnerable

Open Graph and Twitter Card Tags # d2a6c41972461397c4b4fbb3e37ca688b3cdcef4

CVE, Research URL

d2a6c41972461397c4b4fbb3e37ca688b3cdcef4

Home page URL

Security reports for Open Graph and Twitter Card Tags

Application

Open Graph and Twitter Card Tags

Date
Jun 27, 2018
Research Description
Open Graph and Twitter Card Tags [wonderm00ns-simple-facebook-open-graph-tags] < 2.2.4.2 Open Graph and Twitter Card Tags <= 2.2.4.1 - Unauthenticated Cross-Site Scripting The Open Graph and Twitter Card Tags plugin for WordPress is vulnerable to Cross-Site Scripting via the ‘img’ parameter in versions up to, and including, 2.2.4.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page.
Affected versions
max 2.2.4.2.
Status
vulnerable