WordPress Buffer – HYPESocial. Social Media Auto Post, Social Media Auto Publish and Schedule

Vulnerabilities 6Slug buffer-my-postLatest version 2020.1.0WordPress.org →Closed

High 7.1 Unfixed Closed

2025-09-05≤ 2020.1.0

CVE-2025-58846

CVE Patchstack Wordfence EUVD

Medium 6.3 Unfixed Closed

2024-10-16≤ 2020.1.0

Freemius SDK <= 2.4.2 - Missing Authorization Checks

CVE

N/A Unfixed Closed

2023-07-18≤ 2020.1.0

WordPress WordPress Buffer – HYPESocial. Social Media Auto Post, Social Media Auto Publish and Schedule Plugin <= 2020.1.0 is vulnerable to Cross Site Scripting (XSS)

Patchstack WPScan CVE

N/A Closed

2022-03-04< 2020.1.0

Freemius SDK <= 2.4.2 - Missing Authorization Checks

Wordfence

N/A Unfixed Closed

2022-02-28≤ 2020.1.0

WordPress "WordPress Buffer – HYPESocial. Social Media Auto Post, Social Media Auto Publish and Schedule" plugin <= 2020.1.0 - Sensitive Information Disclosure vulnerability

Patchstack

N/A Unfixed Closed

2022-02-28≤ 2020.1.0

WordPress "WordPress Buffer – HYPESocial. Social Media Auto Post, Social Media Auto Publish and Schedule" plugin <= 2020.1.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Patchstack