cleantalk
Vulnerabilities and Security Researches

Smash Balloon Social Post Feed, CVE-2024-31379

CVE, Research URL

CVE-2024-31379

Home page URL

Security reports for Smash Balloon Social Post Feed

Application

Smash Balloon Social Post Feed

Published on
Apr 15, 2024
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Smash Balloon Smash Balloon Social Post Feed.This issue affects Smash Balloon Social Post Feed: from n/a through 4.2.1.
Affected versions
max 4.2.2.
Status
vulnerable
Previous vulnerability researches
Smash Balloon Social Post Feed , Jul 24, 2024
Smash Balloon Social Post Feed (CVE-2025-49937) , Dec 10, 2025
Smash Balloon Social Post Feed (CVE-2022-4477) , Jun 07, 2024
Smash Balloon Social Post Feed (CVE-2024-31379) , Jun 07, 2024
Smash Balloon Social Post Feed (CVE-2021-25065) , Jun 07, 2024
New vulnerability
School Management System – WPSchoolPress (CVE-2025-11981) , Dec 11, 2025
Booking System for Your WordPress Appointments – Time Slot (CVE-2025-12842) , Dec 11, 2025
WooCommerce PDF Invoice Builder, Create invoices, packing slips and more (CVE-2025-64269) , Dec 11, 2025
WP Gravity Forms FreshDesk Plugin (CVE-2025-67587) , Dec 11, 2025
Everest Backup – WordPress Cloud Backup, Migration, Restore & Cloning Plugin (CVE-2025-10304) , Dec 11, 2025