cleantalk
Vulnerabilities and Security Researches

Flow-Flow Social Feed Stream, f323f92085eab76ce72ef3e953ee307aa7c527e3

CVE, Research URL

f323f92085eab76ce72ef3e953ee307aa7c527e3

Home page URL

Security reports for Flow-Flow Social Feed Stream

Application

Flow-Flow Social Feed Stream

Published on
Nov 13, 2018
Research Description
Flow-Flow Social Feed Stream [flow-flow-social-streams] < 3.0.72 WordPress Flow-Flow Social Stream plugin <= 3.0.71 - Unauthenticated Cross-Site Scripting (XSS) vulnerability Unauthenticated Cross-Site Scripting (XSS) vulnerability found by Alaistair Jerrom-Smith in WordPress Flow-Flow Social Stream plugin (versions <= 3.0.71).
Affected versions
Min -, max 3.0.72.
Status
vulnerable
Previous vulnerability researches
Flow-Flow Social Feed Stream (f323f92085eab76ce72ef3e953ee307aa7c527e3) , Jun 07, 2024
New vulnerability
Frontend File Manager Plugin (CVE-2023-7306) , Jul 27, 2025
Webinar Solution: Create live/evergreen/automated/instant webinars, stream &amp; Zoom Meetings | WebinarIgnition (CVE-2025-6441) , Jul 27, 2025
Timber (CVE-2024-45411) , Jul 27, 2025
Advanced iFrame (CVE-2025-6987) , Jul 27, 2025
ReachShip WooCommerce Multi-Carrier &amp; Conditional Shipping (CVE-2025-53213) , Jul 27, 2025