Log out
Get PRO

Latest

Input validation vulnerability in Auto Post to Social Media – WordPress to Buffer 3.8.1

  • Severity: medium-risk
  • Status: Fixed
  • Publication: August 5, 2022

The WordPress to Buffer plugin for WordPress has a security issue in versions 3.8.1 and earlier that can allow malicious web scripts to be injected into pages. This vulnerability can be exploited by attackers who have administrative level permissions to inject the scripts. This issue only affects multi-site installations and installations where unfiltered_html has been disabled.

Detected in:

Auto Post, Auto Publish and Schedule to Facebook, Twitter, LinkedIn – WP to Buffer fixed vulnerable versions:
Auto Post, Auto Publish and Schedule to Twitter, LinkedIn and Social Media – WP to Buffer fixed vulnerable versions:
Auto Post, Publish & Schedule to Facebook, Twitter, LinkedIn – WP to Buffer fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.