| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2025-5528 | Social Sharing Plugin – Sassy Social Share <= 3.3.75 - Reflected Cross-Site Scripting via 'heateor_mastodon_share' Parameter | heateor | Social Sharing Plugin – Sassy Social Share | Medium | 6.1 | 2025-06-07 11:17:51 | Deep Dive |
| CVE-2025-39404 | WordPress Sassy Social Share plugin <= 3.3.73 - Open Redirection vulnerability | Heateor Support | Sassy Social Share | Medium | 4.7 | 2025-04-24 16:08:31 | Deep Dive |
| CVE-2024-11252 | Social Sharing Plugin – Sassy Social Share <= 3.3.69 - Reflected Cross-Site Scripting via heateor_mastodon_share Parameter | heateor | Social Sharing Plugin – Sassy Social Share | Medium | 6.1 | 2024-11-30 05:41:11 | Deep Dive |
| CVE-2022-4971 | Sassy Social Share <= 3.3.3 - Reflected Cross-Site Scripting | heateor | Social Sharing Plugin – Sassy Social Share | Medium | 6.1 | 2024-10-16 06:43:35 | Deep Dive |
| CVE-2024-1989 | Social Sharing Plugin – Sassy Social Share <= 3.3.58 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | heateor | Social Sharing Plugin – Sassy Social Share | Medium | 6.4 | 2024-03-06 05:33:24 | Deep Dive |
| CVE-2024-1448 | Sassy Social Share <= 3.3.56 - Authenticated (Contributor+) Stored Cross-Site Scripting | heateor | Social Sharing Plugin – Sassy Social Share | Medium | 6.4 | 2024-02-20 18:56:21 | Deep Dive |
| CVE-2021-24746 | Sassy Social Share < 3.3.40 - Reflected Cross-Site Scripting | Unknown | Social Sharing Plugin – Sassy Social Share | 中危 | - | 2022-03-28 17:20:47 | Deep Dive |
| CVE-2021-39321 | Sassy Social Share 3.3.23 PHP Object Injection | Sassy Social Share | Sassy Social Share | High | 8.8 | 2021-10-21 19:38:53 | Deep Dive |