Approved changes feed: RSS · Atom

cpe:2.3:a:nextendweb:nextend_facebook_connect:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorNextendweb (da1c10d6-feae-5ddb-8d3b-18a68fcd20ef)
ProductNextend Facebook Connect (64d3a50b-3d5f-5f47-a467-00088a673a43)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/afrozaar/nextend-facebook-connect purl2cpe 2026-06-01 10:12:09.300327
pkg:github/wp-plugins/nextend-facebook-connect purl2cpe 2026-06-01 10:12:09.300330
pkg:github/x5tuts/nextend-facebook-connect purl2cpe 2026-06-01 10:12:09.300333

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2025-58031 vulnerable 2026-06-08 07:35:16.892258 WordPress Nextend Facebook Connect Plugin <= 3.1.19 - Cross Site Scripting (XSS) Vulnerability
MEDIUM (6.5)
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Nextendweb Nextend Facebook Connect nextend-facebook-connect allows Stored XSS.This issue affects Nextend Facebook Connect : from n/a through <= 3.1.19.
Published: 2025-09-22T18:23:53.495Z
Updated: 2026-05-13T00:25:07.723Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.