VYPR

Nextend Social Login and Register

by WordPress

CVEs (1)

  • CVE-2024-1775MedMar 2, 2024
    risk 0.28cvss 5.4epss 0.00

    The Nextend Social Login and Register plugin for WordPress is vulnerable to a self-based Reflected Cross-Site Scripting via the ‘error_description’ parameter in all versions up to, and including, 3.1.12 due to insufficient input sanitization and output escaping. This makes…