Unrated severityNVD Advisory· Published Jan 17, 2022· Updated Aug 3, 2024
Smash Balloon Social Post Feed < 4.1.1 - Authenticated Reflected Cross-Site Scripting (XSS)
CVE-2021-25065
Description
The Smash Balloon Social Post Feed WordPress plugin before 4.1.1 was affected by a reflected XSS in custom-facebook-feed in cff-top admin page.
Affected products
1- Range: 4.1.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- wpscan.com/vulnerability/ae1aab4e-b00a-458b-a176-85761655bdccmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.