All 3 CVE vulnerabilities found in Heateor Social Login, with AI-generated Chinese analysis, references, and POCs.
Vendor: Team Heateor
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-68998 | WordPress Heateor Social Login plugin <= 1.1.39 - Cross Site Request Forgery (CSRF) vulnerability CWE-352 | 5.4 | Medium | 2025-12-30 |
| CVE-2024-35706 | WordPress Heateor Social Login WordPress plugin <= 1.1.32 - Cross Site Scripting (XSS) vulnerability CWE-79 | 7.1 | High | 2024-06-08 |
| CVE-2024-35707 | WordPress Heateor Social Login WordPress plugin <= 1.1.32 - Cross Site Scripting (XSS) vulnerability CWE-79 | 6.5 | Medium | 2024-06-08 |
All 3 known CVE vulnerabilities affecting Heateor Social Login with full Chinese analysis, references, and POCs where available.