PT-2013-4429 · WordPress · Sharebar
Published
2013-07-16
·
Updated
2019-08-28
·
CVE-2013-3491
CVSS v2.0
6.8
Medium
| Vector | AV:N/AC:M/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
Sharebar plugin version 1.2.5
Description
The issue allows remote attackers to hijack the authentication of administrators for requests, including adding or modifying buttons, or inserting cross-site scripting sequences, due to multiple cross-site request forgery vulnerabilities.
Recommendations
For Sharebar plugin version 1.2.5, update to a version that addresses the CSRF vulnerabilities to prevent authentication hijacking and potential cross-site scripting attacks.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Sharebar