Sharebar Project: >> Sharebar >> 1.0.9 Security Vulnerabilities
The Sharebar WordPress plugin through 1.4.1 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack and also lead to Stored Cross-Site Scripting issue due to the lack of sanitisation and escaping in some of them
CVSS Score
5.4
EPSS Score
0.001
Published
2022-07-11
The sharebar plugin before 1.2.2 for WordPress has XSS, a different issue than CVE-2013-3491.
CVSS Score
6.1
EPSS Score
0.002
Published
2019-08-28
The sharebar plugin before 1.2.2 for WordPress has SQL injection.
CVSS Score
9.8
EPSS Score
0.005
Published
2019-08-28