cbcvebase.
CVE-2022-4971
published 2024-10-16

CVE-2022-4971: The Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'urls' parameter called via the 'heateor_sss_sharing_count'…

PriorityP276medium6.1CVSS 3.1
AVNACLPRNUIRSCCLILAN
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
15.44%
96.4th percentile
The Sassy Social Share plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'urls' parameter called via the 'heateor_sss_sharing_count' AJAX action in versions up to, and including, 3.3.3 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.

Affected

2 ranges
VendorProductVersion rangeFixed in
heateorsassy_social_share<= 3.3.3
heateorsocial_sharing_plugin_sassy_social_share<= 3.3.3

Detection & IOCsextracted from sources · hover to see the quote

otherheateor_sss_sharing_count
otherurls
  • Look for unauthenticated POST/GET requests to WordPress AJAX endpoint (wp-admin/admin-ajax.php) with action=heateor_sss_sharing_count and a 'urls' parameter containing script injection payloads.
  • Nuclei template fingerprints exploitation by checking response body for 'facebook_urls":' and content-type text/html with HTTP 200, indicating successful XSS payload reflection.
  • ·Vulnerability affects Sassy Social Share plugin versions up to and including 3.3.3 only; patched versions are not affected.
  • ·The attack is unauthenticated and requires social engineering (tricking a user into clicking a crafted link) to trigger the reflected XSS.

CVSS provenance

nvdv3.16.1MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
vulncheck6.1MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.