cleantalk
Vulnerabilities and Security Researches

Social Slider Feed, CVE-2021-24196

CVE, Research URL

CVE-2021-24196

Home page URL

Security reports for Social Slider Feed

Application

Social Slider Feed

Published on
Apr 06, 2021
Research Description
The Social Slider Widget WordPress plugin before 1.8.5 allowed Authenticated Reflected XSS in the plugin settings page as the ‘token_error’ parameter can be controlled by users and it is directly echoed without being sanitized
Affected versions
Min -, max 2.0.5.
Status
vulnerable
Previous vulnerability researches
Social Slider Feed (CVE-2021-24196) , Jun 07, 2024
Social Slider Feed (CVE-2024-43215) , Aug 12, 2024
Social Slider Feed (CVE-2025-0717) , Apr 24, 2025
New vulnerability
CM Ad Changer – Ad Manager and Ad Server (CVE-2025-46245) , Apr 24, 2025
Anything Popup (CVE-2025-39397) , Apr 24, 2025
Simple Download Counter (CVE-2025-46240) , Apr 24, 2025
Textmetrics (CVE-2025-46229) , Apr 24, 2025
World first Lifetime free Form Builder for WordPress (CVE-2025-46250) , Apr 24, 2025