NextScripts NextScripts social-networks-auto-poster-facebook-twitter-g
Moderate fix1 remedy
cpe:2.3:a:nextscripts:social_networks_auto_poster:*:*:*:*:wordpress:*:*
Moderate fix1 remedy
- <= 4.4.7
NextScripts Social Networks Auto Poster WordPress Plugin PHP Object Injection Vulnerability
Vulnerability
A deserialization vulnerability allowing object injection has been identified in the NextScripts Social Networks Auto Poster WordPress plugin, affecting versions through 4.4.7. This vulnerability could lead to various injection attacks, including code injection, SQL injection, and path traversal, among others, if a suitable object injection chain is exploited.
Impact
Exploitation of this vulnerability could allow a malicious actor to inject objects, potentially leading to code execution, SQL injection, path traversal, or a denial-of-service condition, depending on the presence of a suitable object injection chain.
Remediation
Users are advised to update to the latest version of the NextScripts Social Networks Auto Poster WordPress plugin. Patchstack has also issued a mitigation rule to block attacks targeting this vulnerability until an official patch can be safely applied.
Added: Mar 5, 2026, 7:58 AM
Updated: Mar 5, 2026, 7:58 AM
Vulnerability Rating
Custom Algorithm
spread
5.2impact
7.5exploitability
4.8remediation
5.6relevance
3.5threat
0.0urgency
2.9incentive
0.0Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.