Sharebar <= 1.2.1 – SQL Injection & Cross-Site Scripting (XSS) | CVE 2012-6719

Affects Plugins

sharebar

Fixed in 1.2.2

References

CVE

CVE-2012-6719

CVE

CVE-2012-6718

URL

https://packetstormsecurity.com/files/#112690/

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CWE-79

CVSS

9.8 (critical)

Miscellaneous

Verified

No

WPVDB ID

fd5a315c-92fe-4d8a-b546-47efee3a4e4e

Timeline

Publicly Published

2012-05-15 (about 12 years ago)

Added

2014-08-01 (about 9 years ago)

Last Updated

2020-09-22 (about 3 years ago)

Other

Published

Title

Published

2023-05-10

Title

Booking Ultra Pro < 1.1.9 - Reflected XSS

Published

2022-06-06

Title

miniOrange's Malware Scanner < 4.5.2 - Admin+ Stored Cross-Site Scripting

Published

2023-03-30

Title

Custom More Link Complete <= 1.4.1 - Admin+ Stored XSS

Published

2023-09-22

Title

Simple Cloudflare Turnstile < 1.23.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

Published

2013-07-23

Title

Download Monitor < 3.3.6.2 - Multiple Reflected Cross-Site Scripting