Vulnerability Details CVE-2018-5214
The "Add Link to Facebook" plugin through 2.3 for WordPress has XSS via the al2fb_facebook_id parameter to wp-admin/profile.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 40.1%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
References
- https://github.com/d4wner/Vulnerabilities-Report/blob/master/Add-Link-to-Facebook.md
- https://wordpress.org/support/topic/stored-xss-bug-at-the-latest-version-of-add-link-to-facebook/
- https://github.com/d4wner/Vulnerabilities-Report/blob/master/Add-Link-to-Facebook.md
- https://wordpress.org/support/topic/stored-xss-bug-at-the-latest-version-of-add-link-to-facebook/
Products affected by CVE-2018-5214
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.171
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.172
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.173
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.174
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.175
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.176
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.177
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.178
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.179
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.181
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.182
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.183
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.184
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.185
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.186
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.187
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.188
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.189
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.191
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.192
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.193
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.194
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.195
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.196
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.197
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.198
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.199
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.201
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.202
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.203
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.204
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.205
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.206
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.207
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.208
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.209
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.211
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.212
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.213
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.214
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.215
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:1.217
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.0
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.0.1
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.1
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.2
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.2.1
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.2.10
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.2.2
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.2.3
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.2.4
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.2.5
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.2.6
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.2.7
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.2.8
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.2.9
-
cpe:2.3:a:add_link_to_facebook_project:add_link_to_facebook:2.3