Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ultimatelysocial social media share buttons vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-5602
The Social Media Share Buttons & Social Sharing Icons plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.8.5. This is due to missing or incorrect nonce validation on several functions corresponding to AJAX actions. This ma...
Ultimatelysocial Social Media Share Buttons & Social Sharing Icons
NA
CVE-2023-5070
The Social Media Share Buttons & Social Sharing Icons plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 2.8.5 via the sfsi_save_export function. This can allow subscribers to export plugin settings that include social media...
Ultimatelysocial Social Media Share Buttons & Social Sharing Icons
1 Github repository
NA
CVE-2023-41238
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in UltimatelySocial Social Media Share Buttons & Social Sharing Icons plugin <= 2.8.3 versions.
Ultimatelysocial Social Media Share Buttons & Social Sharing Icons
NA
CVE-2023-0958
Several plugins for WordPress by Inisev are vulnerable to unauthorized installation of plugins due to a missing capability check on the handle_installation function that is called via the inisev_installation AJAX aciton in various versions. This makes it possible for authenticate...
Inisev Redirection
Themecheck Ultimate Posts Widget
Inisev Ssl Mixed Content Fix
Inisev Rss Redirect & Feedburner Alternative
Mypopups Pop-up
Themecheck Enhanced Text Widget
Copy-delete-posts Duplicate Post
Backupbliss Clone
Backupbliss Backup Migration
Socialshare Social Share Icons & Social Share Buttons
Ultimatelysocial Social Media Share Buttons & Social Sharing Icons
NA
CVE-2023-3977
Several plugins for WordPress by Inisev are vulnerable to Cross-Site Request Forgery to unauthorized installation of plugins due to a missing nonce check on the handle_installation function that is called via the inisev_installation AJAX aciton in various versions. This makes it ...
Inisev Redirection
Themecheck Ultimate Posts Widget
Inisev Ssl Mixed Content Fix
Ultimatelysocial Social Media Share Buttons & Social Sharing Icons
Inisev Rss Redirect & Feedburner Alternative
Mypopups Pop-up
Themecheck Enhanced Text Widget
Copy-delete-posts Duplicate Post
Backupbliss Clone
Backupbliss Backup Migration
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege
CVE-2022-48762
CVE-2022-48751
CVE-2024-37079
CVE-2024-30848
LFI
man-in-the-middle
CVE-2022-48736
CVE-2024-30103
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started