CVE-2022-1653 – The Social Share Buttons by Supsystic WordPress plugin before 2.2.4 does not perform CSRF …

27 June 2022

Vuln ID: CVE-2022-1653

Published: 2022-06-27 09:15:09Z

Description: The Social Share Buttons by Supsystic WordPress plugin before 2.2.4 does not perform CSRF checks in it’s ajax endpoints and admin pages, allowing an attacker to trick any logged in user to manipulate or change the plugin settings, as well as create, delete and rename projects and networks.

Source: NVD.NIST.GOV

Date:

27 June 2022

Categorie(s):

NVD

Tag(s):

NVD

LastPass users targeted by vishing attackers19 April 2024
Hackers Target Middle East Governments with Evasive “CR4T” Backdoor19 April 2024
6 Surprising Ways Hackers Can Exploit Your Smart Home Devices19 April 2024
Protobom: Open-source software supply chain tool19 April 2024
The key pillars of domain security19 April 2024