Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin Blog2Social:Social Media Auto Post Scheduler Multiple Vulnerabilities - CVE-2022-3247 - Vulnerability Database
WP Plugin Blog2Social

WordPress Plugin Blog2Social:Social Media Auto Post Scheduler Multiple Vulnerabilities - CVE-2022-3247

High
Reference: CVE-2022-3247
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2022-3247
Title: WordPress Plugin Blog2Social:Social Media Auto Post Scheduler Multiple Vulnerabilities
Overview:

WordPress Plugin Blog2Social:Social Media Auto Post Scheduler is prone to multiple vulnerabilities including SQL injection and server-side request forgery vulnerabilities. An attacker may leverage these issues to compromise the application access or modify data or exploit latent vulnerabilities in the underlying database or to make the vulnerable server perform port scanning of hosts in internal or external networks other attacks are also possible. WordPress Plugin Blog2Social:Social Media Auto Post Scheduler version 6.9.9 is vulnerable prior versions may also be affected.