| CVE-2024-10114 | Social Login - WordPress / WooCommerce Plugin <= 2.7.7 - Authentication Bypass via WordPress.com OAuth provider | WPWeb | WooCommerce - Social Login | High | 8.1 | 2024-11-05 08:31:37 | Deep Dive |
| CVE-2024-9501 | Wp Social Login and Register Social Counter <= 3.0.7 - Authentication Bypass via WordPress.com OAuth provider | roxnor | Wp Social Login and Register Social Counter | Critical | 9.8 | 2024-10-26 12:32:48 | Deep Dive |
| CVE-2024-9893 | Nextend Social Login Pro <= 3.1.14 - Authentication Bypass via WordPress.com OAuth provider | nextendweb | Nextend Social Login Pro | Critical | 9.8 | 2024-10-16 13:56:39 | Deep Dive |
| CVE-2024-9106 | Wechat Social login <= 1.3.0 - Authentication Bypass | xunhuweb | Wechat Social login 微信QQ钉钉登录插件 | Critical | 9.8 | 2024-10-01 07:30:09 | Deep Dive |
| CVE-2024-9108 | Wechat Social login <= 1.3.0 - Unauthenticated Arbitrary File Upload | xunhuweb | Wechat Social login 微信QQ钉钉登录插件 | Critical | 9.8 | 2024-10-01 07:30:07 | Deep Dive |
| CVE-2024-7503 | WooCommerce - Social Login <= 2.7.5 - Authentication Bypass to Account Takeover | WPWeb | WooCommerce - Social Login | Critical | 9.8 | 2024-08-10 02:01:24 | Deep Dive |
| CVE-2024-6636 | WooCommerce - Social Login <= 2.7.3 - Missing Authorization to Unauthenticated Privilege Escalation | WPWeb | WooCommerce - Social Login | Critical | 9.8 | 2024-07-20 07:38:05 | Deep Dive |
| CVE-2024-6635 | WooCommerce - Social Login <= 2.7.3 - Unauthenticated Authentication Bypass | WPWeb | WooCommerce - Social Login | High | 7.3 | 2024-07-20 07:38:04 | Deep Dive |
| CVE-2024-6637 | WooCommerce - Social Login <= 2.7.3 - Unauthenticated Privilege Escalation via One-Time Password | WPWeb | WooCommerce - Social Login | High | 7.3 | 2024-07-20 07:37:52 | Deep Dive |
| CVE-2024-37502 | WordPress Social Login plugin <= 2.6.3 - PHP Object Injection vulnerability | wpweb | WooCommerce Social Login | Medium | 5.4 | 2024-07-09 08:57:03 | Deep Dive |
| CVE-2024-5868 | WooCommerce - Social Login <= 2.6.2 - Email Verification due to Insufficient Randomness | WPWeb | WooCommerce - Social Login | Medium | 6.5 | 2024-06-15 03:35:11 | Deep Dive |
| CVE-2024-5871 | WooCommerce - Social Login <= 2.6.2 - Unauthenticated PHP Object Injection | WPWeb | WooCommerce - Social Login | Critical | 9.8 | 2024-06-15 03:35:11 | Deep Dive |
| CVE-2024-35706 | WordPress Heateor Social Login WordPress plugin <= 1.1.32 - Cross Site Scripting (XSS) vulnerability | Team Heateor | Heateor Social Login | High | 7.1 | 2024-06-08 14:10:06 | Deep Dive |
| CVE-2024-35707 | WordPress Heateor Social Login WordPress plugin <= 1.1.32 - Cross Site Scripting (XSS) vulnerability | Team Heateor | Heateor Social Login | Medium | 6.5 | 2024-06-08 14:05:14 | Deep Dive |
| CVE-2024-4552 | Social Login Lite For WooCommerce <= 1.6.0 - Authentication Bypass | phoeniixx | Social Login Lite For WooCommerce | Critical | 9.8 | 2024-06-04 02:00:56 | Deep Dive |
| CVE-2024-4544 | Pie Register - Social Sites Login (Add on) <= 1.7.7 - Authentication Bypass | Genetech Solutions | Pie Register - Social Sites Login (Add on) | Critical | 9.8 | 2024-05-24 03:30:35 | Deep Dive |
| CVE-2023-47683 | WordPress Social Login, Social Sharing by miniOrange plugin <= 7.6.6 - Authenticated Privilege Escalation vulnerability | miniOrange | WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) | High | 8.0 | 2024-05-17 08:36:38 | Deep Dive |
| CVE-2024-32674 | WordPress Plugin Heator Social Login 跨站脚本漏洞 | Heateor | Heateor Social Login WordPress | - | - | 2024-05-08 03:37:49 | Deep Dive |
| CVE-2024-2836 | Super Socializer < 7.13.64 - Editor+ Stored XSS | Unknown | Social Share, Social Login and Social Comments Plugin | - | - | 2024-04-15 05:00:06 | Deep Dive |
| CVE-2024-1763 | Wp Social Login and Register Social Counter <= 3.0.0 - Missing Authorization to Unauthenticated Social Login/Share Status Update | roxnor | Wp Social Login and Register Social Counter | Medium | 6.5 | 2024-03-13 15:26:49 | Deep Dive |