Cross-Site Scripting Vulnerability in WordPress Social Login Plugin

CVE-2014-4576

What is CVE-2014-4576?

A cross-site scripting (XSS) vulnerability exists in the WordPress Social Login plugin versions 2.0.3 and earlier, where an attacker can exploit the 'xhrurl' parameter to insert arbitrary web scripts or HTML code. This allows remote attackers to execute malicious scripts on users' browsers, potentially leading to data theft, session hijacking, or other malicious activities.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch →

References