VYPR

Wp Social Login And Register Social Counter

by Wpmet

Source repositories

CVEs (4)

  • CVE-2024-1763MedMar 13, 2024
    risk 0.42cvss 6.5epss 0.00

    The Wp Social Login and Register Social Counter plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the /wp_social/v1/ REST API endpoint in all versions up to, and including, 3.0.0. This makes it possible for…

  • CVE-2022-47160MedJan 19, 2024
    risk 0.42cvss 6.5epss 0.01

    Exposure of Sensitive Information to an Unauthorized Actor vulnerability in Wpmet Wp Social Login and Register Social Counter.This issue affects Wp Social Login and Register Social Counter: from n/a through 1.9.0.

  • CVE-2025-13620MedDec 5, 2025
    risk 0.27cvss 5.3epss 0.00

    The Wp Social Login and Register Social Counter plugin for WordPress is vulnerable to missing authorization in versions up to, and including, 3.1.3. This is due to the REST routes wslu/v1/check_cache/{type}, wslu/v1/save_cache/{type}, and wslu/v1/settings/clear_counter_cache…

  • CVE-2025-1506Feb 28, 2025
    risk 0.00cvss epss 0.00

    The Wp Social Login and Register Social Counter plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.0. This is due to missing or incorrect nonce validation on the counter_access_key_setup() function. This makes it possible…