{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-1923", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2026-02-04T18:52:24.771Z", "datePublished": "2026-04-23T01:24:32.284Z", "dateUpdated": "2026-04-23T16:23:18.789Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-23T01:24:32.284Z"}, "affected": [{"vendor": "socialrocket", "product": "Social Rocket \u2013 Social Sharing Plugin", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "1.3.4.2", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The Social Rocket \u2013 Social Sharing Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018id\u2019 parameter in all versions up to, and including, 1.3.4.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Subscriber-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "title": "Social Rocket \u2013 Social Sharing Plugin <= 1.3.4.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting via id", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/d92fc04e-201e-4fc3-bbf0-4f2f3de3ee95?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset/3467694/social-rocket"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')", "cweId": "CWE-79", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "baseScore": 6.4, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "Tarc\u00edsio Luchesi De Almeida Silva"}], "timeline": [{"time": "2026-04-22T12:47:30.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-04-23T14:40:44.834260Z", "id": "CVE-2026-1923", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-23T16:23:18.789Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-1923", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-04-23T14:40:44.834260Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-04-23T14:40:48.908Z"}}], "cna": {"title": "Social Rocket \u2013 Social Sharing Plugin <= 1.3.4.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting via id", "credits": [{"lang": "en", "type": "finder", "value": "Tarc\u00edsio Luchesi De Almeida Silva"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 6.4, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N"}}], "affected": [{"vendor": "socialrocket", "product": "Social Rocket \u2013 Social Sharing Plugin", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "1.3.4.2"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2026-04-22T12:47:30.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/d92fc04e-201e-4fc3-bbf0-4f2f3de3ee95?source=cve"}, {"url": "https://plugins.trac.wordpress.org/changeset/3467694/social-rocket"}], "descriptions": [{"lang": "en", "value": "The Social Rocket \u2013 Social Sharing Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018id\u2019 parameter in all versions up to, and including, 1.3.4.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Subscriber-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-79", "description": "CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-23T01:24:32.284Z"}}}, "cveMetadata": {"cveId": "CVE-2026-1923", "state": "PUBLISHED", "dateUpdated": "2026-04-23T16:23:18.789Z", "dateReserved": "2026-02-04T18:52:24.771Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2026-04-23T01:24:32.284Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The Social Rocket \u2013 Social Sharing Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the \u2018id\u2019 parameter in all versions up to, and including, 1.3.4.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Subscriber-level access and above, to inject arbitrary web scripts in pages that will execute whenever a user accesses an injected page."}], "id": "CVE-2026-1923", "lastModified": "2026-04-23T14:28:55.557", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 6.4, "baseSeverity": "MEDIUM", "confidentialityImpact": "LOW", "integrityImpact": "LOW", "privilegesRequired": "LOW", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 3.1, "impactScore": 2.7, "source": "security@wordfence.com", "type": "Primary"}]}, "published": "2026-04-23T02:16:15.737", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/changeset/3467694/social-rocket"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/d92fc04e-201e-4fc3-bbf0-4f2f3de3ee95?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "security@wordfence.com", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "[0,1.3.4.2]"}}], "enrichment": {"confidence": 100.0, "confidence_source": "cna", "scores": [{"score": 100.0, "source": "cna"}]}, "original": {"product": "Social Rocket \u2013 Social Sharing Plugin", "source": "cna", "vendor": "socialrocket"}, "product": "social_rocket_\u2013_social_sharing_plugin", "vendor": "socialrocket"}, {"configurations": [{"platform": null, "status": "unaffected", "versions": null}], "enrichment": {"confidence": 80.0, "confidence_source": "inferred", "scores": [{"score": 80.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "product": "wordpress", "vendor": "wordpress"}], "analysis": {"en": {"generated_at": "2026-04-28T20:35:09.517036+00:00", "value": {"mitigation_remediation": ["Upgrade the Social Rocket plugin to any version newer than 1.3.4.2.", "If an upgrade is not immediately possible, disable the plugin for Subscriber\u2011level users or revoke their ability to activate or edit the plugin.", "Add a custom WordPress filter to block or sanitize the id parameter at request time, preventing malicious input from being persisted."], "summary": {"action": "Immediate Patch", "impact": "Stored Cross\u2011Site Scripting"}, "threat_synthesis": {"affected_systems": "WordPress sites that have the Social Rocket \u2013 Social Sharing Plugin installed and running a version equal to or older than 1.3.4.2 are affected. Administrators should check the plugin version in the WordPress dashboard and ensure it is updated to a newer release that addresses the id\u2011parameter handling.", "description_and_impact": "The Social Rocket \u2013 Social Sharing Plugin for WordPress is vulnerable to Stored Cross\u2011Site Scripting via the id parameter in all versions up to 1.3.4.2. Insufficient input sanitization and output escaping allow an attacker who is authenticated with Subscriber\u2011level permissions or higher to inject and store arbitrary JavaScript. When a visitor opens a page that contains the injected payload the script will execute in the visitor\u2019s browser. The severity is reflected by a CVSS score of 6.4 and constitutes a moderate\u2011tier risk that can be exploited to execute malicious code on the client side.", "risk_and_exploitability": "The vulnerability requires the attacker to be authenticated with at least Subscriber privileges. Once authenticated the attacker can embed the payload which then remains stored permanently in the site\u2019s database. The EPSS score of less than 1\u202f% indicates a low exploitation probability under current conditions and the vulnerability is not listed in the CISA KEV catalog. Exploitation is limited to users who can provide a valid session cookie. The CVSS score of 6.4 reflects a moderate likelihood of successful exploitation when the conditions are met."}}}}, "created": "2026-04-28T09:26:27.385883+00:00", "updated": "2026-04-28T20:45:16.587896+00:00", "vendors": ["socialrocket", "socialrocket$PRODUCT$social_rocket_\u2013_social_sharing_plugin", "wordpress", "wordpress$PRODUCT$wordpress"]}