CVE-2019-9978 - WordPress Social Warfare Plugin Cross-Site Scripting (XSS) Vulnerability
Project:WordPress
Product:Social Warfare Plugin
Date Added:2021-11-03Due Date:2022-05-03
Vulnerability Name
WordPress Social Warfare Plugin Cross-Site Scripting (XSS) Vulnerability
Description
WordPress Social Warfare plugin contains a cross-site scripting (XSS) vulnerability that allows for remote code execution. This vulnerability affects Social Warfare and Social Warfare Pro.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2019-9978