GCVE - cpe:2.3:a:supsystic:social_share_buttons:*:*:*:*:*:wordpress:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:supsystic:social_share_buttons:*:*:*:*:*:wordpress:*:*

part: a version: * update: *

Vendor	Supsystic (`31a63952-7184-5307-ada0-8934fe420f61`)
Product	Social Share Buttons (`74ecdcc4-c1c2-5d6b-9a69-2fd0db14efd1`)
Edition	*
Language	*
Software edition	*
Target software	wordpress
Target hardware	*
Other	*
Notes	Imported from purl2cpe mapping

PURL mappings

PURL	Source	Last updated
`pkg:github/wp-plugins/social-share-buttons-by-supsystic`	purl2cpe	2026-06-01 10:15:31.975718

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2024-47330`	vulnerable	2026-06-03 14:57:01.032685	Broken Access Control vulnerability on multiple WordPress plugins by Supsystic MEDIUM (4.3) Missing Authorization vulnerability in Supsystic Slider by Supsystic, Supsystic Social Share Buttons by Supsystic.This issue affects Slider by Supsystic: from n/a through 1.8.6; Social Share Buttons by Supsystic: from n/a through 2.2.9. Published: 2024-09-26T02:38:03.935Z Updated: 2026-04-28T16:10:18.923Z Open on db.gcve.eu Reference links https://patchstack.com/database/vulnerability/slider-by-supsystic/wordpress-slider-by-supsystic-plugin-1-8-6-broken-access-control-vulnerability?_s_id=cve https://patchstack.com/database/vulnerability/social-share-buttons-by-supsystic/wordpress-social-share-buttons-by-supsystic-plugin-2-2-9-broken-access-control-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-33960`	vulnerable	2026-06-03 14:47:28.838693	WordPress Social Share Buttons by Supsystic plugin <= 2.2.3 - Multiple Authenticated SQL Injection (SQLi) vulnerabilities HIGH (8.5) Multiple Authenticated (subscriber or higher user role) SQL Injection (SQLi) vulnerabilities in Social Share Buttons by Supsystic plugin <= 2.2.3 at WordPress. Published: 2022-07-22T16:40:37.518Z Updated: 2026-04-28T16:07:43.955Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/social-share-buttons-by-supsystic/#developers https://patchstack.com/database/vulnerability/social-share-buttons-by-supsystic/wordpress-social-share-buttons-by-supsystic-plugin-2-2-3-multiple-authenticated-sql-injection-sqli-vulnerabilities	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-27235`	vulnerable	2026-06-03 14:46:45.795989	WordPress Social Share Buttons by Supsystic plugin <= 2.2.3 - Multiple Broken Access Control vulnerabilities MEDIUM (6.3) Multiple Broken Access Control vulnerabilities in Social Share Buttons by Supsystic plugin <= 2.2.3 at WordPress. Published: 2022-07-22T16:43:11.114Z Updated: 2026-04-28T16:07:39.374Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/social-share-buttons-by-supsystic/#developers https://patchstack.com/database/vulnerability/social-share-buttons-by-supsystic/wordpress-social-share-buttons-by-supsystic-plugin-2-2-3-multiple-broken-access-control-vulnerabilities	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2022-1653`	vulnerable	2026-06-03 14:45:59.329538	Social Share Buttons by Supsystic < 2.2.4 - Multiple CSRF The Social Share Buttons by Supsystic WordPress plugin before 2.2.4 does not perform CSRF checks in it's ajax endpoints and admin pages, allowing an attacker to trick any logged in user to manipulate or change the plugin settings, as well as create, delete and rename projects and networks. Published: 2022-06-27T08:57:22.000Z Updated: 2024-08-03T00:10:03.754Z Open on db.gcve.eu Reference links https://wpscan.com/vulnerability/52eff451-8ce3-4ac4-b530-3196aa82db48	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2021-36890`	vulnerable	2026-06-03 14:44:59.328126	WordPress Social Share Buttons by Supsystic plugin <= 2.2.2 - Cross-Site Request Forgery (CSRF) vulnerability MEDIUM (4.3) Cross-Site Request Forgery (CSRF) vulnerability in Social Share Buttons by Supsystic plugin <= 2.2.2 at WordPress. Published: 2022-05-31T19:30:51.204Z Updated: 2026-04-28T16:07:36.295Z Open on db.gcve.eu Reference links https://wordpress.org/plugins/social-share-buttons-by-supsystic/ https://patchstack.com/database/vulnerability/social-share-buttons-by-supsystic/wordpress-social-share-buttons-by-supsystic-plugin-2-2-2-cross-site-request-forgery-csrf-vulnerability	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Social Share Buttons

PURL mappings

Vulnerability references

Contribute