Description
WordPress Plugin NextScripts:Social Networks Auto-Poster is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently delete posts, arbitrary posting in social networks, or update plugin's settings. WordPress Plugin NextScripts:Social Networks Auto-Poster version 4.3.17 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 4.3.18 or latest
References
Related Vulnerabilities
WordPress Plugin wp-easybooking Cross-Site Scripting (1.0.3)
Drupal Improper Authentication Vulnerability (CVE-2019-10911)
WordPress Plugin WPUpper Share Buttons Cross-Site Scripting (3.42)
WordPress Plugin Zoho CRM Lead Magnet Unspecified Vulnerability (1.7.2.9)
Owncloud Cross-site Scripting (XSS) Vulnerability (CVE-2020-16255)