EIP-2026-113514
PRE-CVEWordPress Plugin 2 Click Social Media Buttons 0.32.2 - Multiple Cross-Site Scripting Vulnerabilities
Title source: legacyExploitation Summary
EIP tracks 1 public exploit for EIP-2026-113514. PoCs published by Heine Pedersen.
AI-analyzed exploit summary The exploit demonstrates a reflected XSS vulnerability in the 2 Click Social Media Buttons WordPress plugin. It leverages unsanitized user input in the 'pinterest-url' and 'xing-url' parameters to inject arbitrary JavaScript code, which executes in the context of the affected site.
Description
WordPress Plugin 2 Click Social Media Buttons 0.32.2 - Multiple Cross-Site Scripting Vulnerabilities
Exploits (1)
The exploit demonstrates a reflected XSS vulnerability in the 2 Click Social Media Buttons WordPress plugin. It leverages unsanitized user input in the 'pinterest-url' and 'xing-url' parameters to inject arbitrary JavaScript code, which executes in the context of the affected site.