✨ NEW SOFTWARE ADDED! ✨
▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬▬
📛 Name: CVE-2021-24508: WordPress Smash Balloon Plugin XSS Vulnerability
🔄 Version: 2021-24508
📦 Size: 23.47 KB
🏷️ Category: CVE Tools
📝 Description:
Stored Cross-Site Scripting (XSS) in Social Post Feed Plugin (< v2.19.2)📢 Advisory SummaryVulnerability Type: Stored XSS (CWE-79)Affected Plugin: Smash Balloon Social Post FeedVersions Impacted: < 2.19.2CVSSv3 Score: 6.1 (Medium) [AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N]Attack Vector: Authenticated users (Contributor+)🔍 Technical ImpactMalicious actors could:✓ Inject arbitrary JavaScript via Instagram feed embeds✓ Hijack admin sessions when viewed in dashboard✓ Deface sites or redirect users...
👨💻 Author: CRACK-VAULT
🔗 Links:
Posted automatically from Tools.crack-vault.de
Support Crack-Vault and help us keep providing free tools. Every donation counts!
(BTC) Address: bc1qhhva8uplmkaa3kkwxnux9t3y6l6kmhnwqzktzn
