cleantalk
Vulnerabilities and Security Researches

WP Social AutoConnect, 2959a12b24f6cfb7310d7233db0be16ded57dca3

CVE, Research URL

2959a12b24f6cfb7310d7233db0be16ded57dca3

Home page URL

Security reports for WP Social AutoConnect

Application

WP Social AutoConnect

Published on
Dec 14, 2014
Research Description
WP Social AutoConnect [wp-fb-autoconnect] < 4.0.6 WordPress WP-FB-AutoConnect Plugin <= 4.0.5 - Multiple Vulnerabilities This plugin is prone to a cross site request forgery and cross site scripting. Attackers can perform XSS attacks and change the plugins admin settings by tricking a logged in admin to visit a crafted page. Upgrade this plugin.
Affected versions
Min -, max 4.0.6.
Status
vulnerable
Previous vulnerability researches
WP Social AutoConnect (CVE-2024-12279) , Jan 05, 2025
WP Social AutoConnect (2959a12b24f6cfb7310d7233db0be16ded57dca3) , Jun 07, 2024
WP Social AutoConnect (CVE-2023-37974) , Jun 07, 2024
WP Social AutoConnect (CVE-2025-50022) , Jul 02, 2025
New vulnerability
Off-Canvas Sidebars &amp; Menus (Slidebars) (CVE-2025-49290) , Jul 03, 2025
Accept Stripe Payments Using Contact Form 7 (CVE-2025-53309) , Jul 03, 2025
Opal Estate Pro &#8211; Property Management and Submission (CVE-2025-6934) , Jul 03, 2025
TM Replace Howdy (CVE-2025-49972) , Jul 03, 2025
VG WORT METIS (CVE-2025-50039) , Jul 03, 2025