Vulnerability Details CVE-2012-10012
A vulnerability has been found in BestWebSoft Facebook Like Button up to 2.13 and classified as problematic. Affected by this vulnerability is the function fcbk_bttn_plgn_settings_page of the file facebook-button-plugin.php. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The patch is named 33144ae5a45ed07efe7fceca901d91365fdbf7cb. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-225355.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 19.4%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 5.0
References
- https://github.com/wp-plugins/facebook-button-plugin/commit/33144ae5a45ed07efe7fceca901d91365fdbf7cb
- https://vuldb.com/?ctiid.225355
- https://vuldb.com/?id.225355
- https://github.com/wp-plugins/facebook-button-plugin/commit/33144ae5a45ed07efe7fceca901d91365fdbf7cb
- https://vuldb.com/?ctiid.225355
- https://vuldb.com/?id.225355
Products affected by CVE-2012-10012
-
cpe:2.3:a:bestwebsoft:facebook_button:1
-
cpe:2.3:a:bestwebsoft:facebook_button:2.01
-
cpe:2.3:a:bestwebsoft:facebook_button:2.02
-
cpe:2.3:a:bestwebsoft:facebook_button:2.03
-
cpe:2.3:a:bestwebsoft:facebook_button:2.04
-
cpe:2.3:a:bestwebsoft:facebook_button:2.05
-
cpe:2.3:a:bestwebsoft:facebook_button:2.06
-
cpe:2.3:a:bestwebsoft:facebook_button:2.07
-
cpe:2.3:a:bestwebsoft:facebook_button:2.08
-
cpe:2.3:a:bestwebsoft:facebook_button:2.09
-
cpe:2.3:a:bestwebsoft:facebook_button:2.10
-
cpe:2.3:a:bestwebsoft:facebook_button:2.11
-
cpe:2.3:a:bestwebsoft:facebook_button:2.12
-
cpe:2.3:a:bestwebsoft:facebook_button:2.13