Known Vulnerabilities for products from Heateor
Listed below are 11 of the newest known vulnerabilities associated with the vendor "Heateor".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2025-68998 json | Not Provided | 2025-12-30 | 2026-04-23 | |
| CVE-2025-39404 json | Not Provided | 2025-04-24 | 2026-04-23 | |
| CVE-2024-1989 json | The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the pl... | Not Provided | 2024-03-06 | 2026-04-08 |
| CVE-2024-1448 json | The Social Sharing Plugin – Sassy Social Share plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the pl... | Not Provided | 2024-02-29 | 2026-04-08 |
| CVE-2023-41802 json | Missing Authorization vulnerability in Rajat Varlani Super Socializer super-socializer allows Exploiting Incorrectly Configur... | Not Provided | 2024-12-13 | 2026-04-23 |
| CVE-2023-35882 json | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Team Heateor Super Socializer plugin <= 7.13.52 vers... | 5.4 - MEDIUM | 2023-06-20 | 2023-06-27 |
| CVE-2023-23977 json | Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Team Heateor WordPress Social Comments Plugin for Vko... | 5.4 - MEDIUM | 2023-04-04 | 2023-11-07 |
| CVE-2023-23670 json | Auth. (contributor+) Cross-Site Scripting (XSS) vulnerability in Team Heateor Fancy Comments WordPress plugin <= 1.2.10 versi... | 5.4 - MEDIUM | 2023-03-30 | 2023-11-07 |
| CVE-2022-4484 json | The Social Share, Social Login and Social Comments Plugin WordPress plugin before 7.13.44 does not validate and escape some o... | 5.4 - MEDIUM | 2023-01-16 | 2023-11-07 |
| CVE-2022-4451 json | The Social Sharing WordPress plugin before 3.3.45 does not validate and escape some of its shortcode attributes before output... | 5.4 - MEDIUM | 2023-01-16 | 2023-11-07 |
| CVE-2021-39321 json | Version 3.3.23 of the Sassy Social Share WordPress plugin is vulnerable to PHP Object Injection via the wp_ajax_heateor_sss_i... | 8.8 - HIGH | 2021-10-21 | 2021-10-25 |
| CVE-2021-24987 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2022-04-11 | 2022-04-15 |
| CVE-2021-24746 json | ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new secur... | 6.1 - MEDIUM | 2022-03-28 | 2022-04-04 |