Add Social Share Messenger Buttons Whatsapp And Viber
Approved changes feed: RSS · Atom
cpe:2.3:a:multidots:add_social_share_messenger_buttons_whatsapp_and_viber:1.0.8:*:*:*:*:wordpress:*:*
part: a version: 1.0.8 update: *
| Vendor | Multidots (5250f8e8-1dec-5ba1-827d-239ecebd5682) |
|---|---|
| Product | Add Social Share Messenger Buttons Whatsapp And Viber (d46903f6-a8e1-5d88-bc0c-2783523825f0) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | wordpress |
| Target hardware | * |
| Other | * |
| Notes | Imported from purl2cpe mapping |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
pkg:github/wpplugins/add-social-share-buttons |
purl2cpe | 2026-06-01 10:17:55.081803 |
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2018-11632 |
vulnerable | 2026-06-08 05:10:38.746448 |
Details available
An issue was discovered in the MULTIDOTS Add Social Share Messenger Buttons Whatsapp and Viber plugin 1.0.8 for WordPress. If an admin user can be tricked into visiting a crafted URL created by an attacker (via spear phishing/social engineering), the attacker can change the plugin settings via wp-admin/admin-post.php CSRF. There's no nonce or capability check in the whatsapp_share_setting_add_update() function.
Published: 2018-05-31T20:00:00.000Z
Updated: 2024-09-16T16:53:32.140Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.