cleantalk
Vulnerabilities and Security Researches

Social Hashtags, a7cf6766582e354e702766a86f85716127d19bdc

CVE, Research URL

a7cf6766582e354e702766a86f85716127d19bdc

Home page URL

Security reports for Social Hashtags

Application

Social Hashtags

Published on
Oct 02, 2012
Research Description
Social Hashtags [social-hashtags] <= 3.0.0 (unfixed) Social Hashtags <= 3.0.0 - Cross-Site Scripting The Social Hashtags plugin for WordPress is vulnerable to Cross-Site Scripting via the new post title field in versions up to, and including, 3.0.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers to inject arbitrary web scripts that execute in a victim's browser.
Affected versions
max 3.0.0.
Status
vulnerable
Previous vulnerability researches
WooCommerce Eway Gateway (25c033c851a6b18ed72fdc96796538b28f1b80c8) , Jun 16, 2026
WooCommerce Eway Gateway (7c85d88d9dc2379ea67793743b81c512dfec2ccf) , Jun 07, 2024
New vulnerability
leenk.me (753d31765913b4d2dbb8af0a5512e5f1f8c70c61) , Jun 16, 2026
Social Hashtags (5abd4657-8a58-4d97-b8cb-b67235ab5b8a) , Jun 16, 2026
Social Hashtags (1965c7b04565befbb11c28b56cb6922733a47b03) , Jun 16, 2026
Social Hashtags (a7cf6766582e354e702766a86f85716127d19bdc) , Jun 16, 2026
Simple Calendar &#8211; Google Calendar Plugin (e98a6264-9c5a-417f-b2f8-bd0017b411a0) , Jun 16, 2026