WordPress Smash Balloon Social Post Feed Vulnerabilities

Wordpress Smash Balloon Social Post Feed vulnerabilities.

JSON RSS CSV 🔔 Create Alert Trigger

10 June 2025

Stored Cross-Site Scripting Vulnerability in Smash Balloon Social Post Feed Plugin for WordPress
CVE-2025-4577
WordPressSmash Balloon Social P...5.4MEDIUM

15 April 2024

CSRF Vulnerability in Smash Balloon Social Post Feed
CVE-2024-31379
WordPressSmash Balloon Social P...4.3MEDIUM

16 January 2023

Smash Balloon Social Post Feed < 4.1.6 - Contributor+ Stored XSS
CVE-2022-4477
WordpressSmash Balloon Social P...👾🟡5.4MEDIUM

17 January 2022

Smash Balloon Social Post Feed < 4.1.1 - Authenticated Reflected Cross-Site Scripting (XSS)
CVE-2021-25065
WordpressSmash Balloon Social P...5.4MEDIUM

29 November 2021

Smash Balloon Social Post Feed < 4.0.1 - Subscriber+ Arbitrary Plugin Settings Update to Stored XSS
CVE-2021-24918
WordpressSmash Balloon Social P...5.4MEDIUM

13 September 2021

Smash Balloon Social Post Feed < 2.19.2 - Unauthenticated Stored XSS
CVE-2021-24508
WordpressSmash Balloon Social P...EPSS 14%6.1MEDIUM