Adenion: >> Blog2social >> 8.3.1 Security Vulnerabilities
The Blog2Social: Social Media Auto Post & Scheduler WordPress plugin before 8.4.0 does not escape the title of posts when outputting them in a dashboard, which could allow users with the contributor role to perform Cross-Site Scripting attacks.
CVSS Score
5.4
EPSS Score
0.0
Published
2025-05-22