Lucene search

K
patchstackWordFencePATCHSTACK:FCB91DF7398183FD36A07987D148126C
HistoryJul 28, 2023 - 12:00 a.m.

WordPress Social Media & Share Icons Plugin <= 2.8.1 is vulnerable to Cross Site Request Forgery (CSRF)

2023-07-2800:00:00
WordFence
patchstack.com
1
wordpress
social media
share icons
plugin
vulnerable
version 2.8.1
fixed 2.8.2
owasp top 10
broken access control
cross site request forgery
csrf
cve-2023-3977
patch priority low
cvss severity low
developer claim ownership
psid 291847e2c77a
credits wordfence
unauthenticated
published 28 july 2023
low severity impact

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

AI Score

4.4

Confidence

High

Software

Social Media & Share Icons

Type

Plugin

Vulnerable versions

<= 2.8.1

Fixed in

2.8.2

OWASP Top 10

A5: Broken Access Control

Classification

Cross Site Request Forgery (CSRF)

CVE

CVE-2023-3977

Patch priority

Low

CVSS severity

Low (4.3)

Developer

Claim ownership

PSID

291847e2c77a

Credits

WordFence

Required privilege

Unauthenticated

Published

28 July, 2023

Vulnerability details

Remove and replace plugin Expand full details Have additional information or questions about this entry? Let us know.

Solution

This security issue has a low severity impact and is unlikely to be exploited.

Affected configurations

Vulners
Node
inisevsocial_media_share_buttons_\&_social_sharing_iconsRange2.8.1wordpress
VendorProductVersionCPE
inisevsocial_media_share_buttons_\&_social_sharing_icons*cpe:2.3:a:inisev:social_media_share_buttons_\&_social_sharing_icons:*:*:*:*:*:wordpress:*:*

CVSS3

4.3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

AI Score

4.4

Confidence

High

Related for PATCHSTACK:FCB91DF7398183FD36A07987D148126C