ThreatPress

WordPress Vulnerabilities Database

Back

WordPress Blog2Social plugin <=5.8.1 - Cross-Site Scripting (XSS) vulnerability

Product
Blog2Social
Description
Cross-Site Scripting (XSS) vulnerability found in WordPress Blog2Social plugin (versions <=5.8.1).
Solution
Update the WordPress Blog2Social plugin to the latest available version (at least 5.9.0).
Classification
Type XSS (Cross Site Scripting)
OWASP Top 10 A3: Cross Site Scripting (XSS)
References
Plugin changelog
CVE
Name CVE-2019-17550
Versions
Affected In <=5.8.1
Fixed In 5.9.0
Disclosure date
2019-11-14
Submitter
ThreatPress