Social Hashtags, a7cf6766582e354e702766a86f85716127d19bdc

CVE, Research URL: a7cf6766582e354e702766a86f85716127d19bdc
Home page URL: Security reports for Social Hashtags
Application: Social Hashtags
Published on: Oct 02, 2012
Research Description: Social Hashtags [social-hashtags] <= 3.0.0 (unfixed) Social Hashtags <= 3.0.0 - Cross-Site Scripting The Social Hashtags plugin for WordPress is vulnerable to Cross-Site Scripting via the new post title field in versions up to, and including, 3.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers to inject arbitrary web scripts that execute in a victim's browser.
Affected versions: max 3.0.0.
Status: vulnerable