Lucene search

MitreCVE-2012-4272

HistoryAug 13, 2012 - 10:55 p.m.

CVE-2012-4272

2012-08-1322:55:01

CWE-79

mitre

web.nvd.nist.gov

cve-2012-4272

xss

vulnerabilities

2 click social media buttons

wordpress

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

Confidence

High

EPSS

0.002

Percentile

53.0%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the 2 Click Social Media Buttons plugin before 0.34 for WordPress allow remote attackers to inject arbitrary web script or HTML via unspecified vectors related to the “processing of the buttons of Xing and Pinterest”.

Affected configurations

Nvd

Node

ppfeufer2-click-social-media-buttonsRange≤0.33

ppfeufer2-click-social-media-buttonsMatch0.1-

ppfeufer2-click-social-media-buttonsMatch0.2

ppfeufer2-click-social-media-buttonsMatch0.3

ppfeufer2-click-social-media-buttonsMatch0.10

ppfeufer2-click-social-media-buttonsMatch0.11

ppfeufer2-click-social-media-buttonsMatch0.11r1

ppfeufer2-click-social-media-buttonsMatch0.11r2

ppfeufer2-click-social-media-buttonsMatch0.12

ppfeufer2-click-social-media-buttonsMatch0.13

ppfeufer2-click-social-media-buttonsMatch0.14

ppfeufer2-click-social-media-buttonsMatch0.15

ppfeufer2-click-social-media-buttonsMatch0.16

ppfeufer2-click-social-media-buttonsMatch0.17

ppfeufer2-click-social-media-buttonsMatch0.18

ppfeufer2-click-social-media-buttonsMatch0.18.1

ppfeufer2-click-social-media-buttonsMatch0.19

ppfeufer2-click-social-media-buttonsMatch0.19.1

ppfeufer2-click-social-media-buttonsMatch0.20

ppfeufer2-click-social-media-buttonsMatch0.21

ppfeufer2-click-social-media-buttonsMatch0.21.1

ppfeufer2-click-social-media-buttonsMatch0.22

ppfeufer2-click-social-media-buttonsMatch0.23

ppfeufer2-click-social-media-buttonsMatch0.23.1

ppfeufer2-click-social-media-buttonsMatch0.24

ppfeufer2-click-social-media-buttonsMatch0.24.1

ppfeufer2-click-social-media-buttonsMatch0.25

ppfeufer2-click-social-media-buttonsMatch0.26

ppfeufer2-click-social-media-buttonsMatch0.27

ppfeufer2-click-social-media-buttonsMatch0.27.1

ppfeufer2-click-social-media-buttonsMatch0.28

ppfeufer2-click-social-media-buttonsMatch0.29

ppfeufer2-click-social-media-buttonsMatch0.30

ppfeufer2-click-social-media-buttonsMatch0.31.1

ppfeufer2-click-social-media-buttonsMatch0.31.2

ppfeufer2-click-social-media-buttonsMatch0.31.3

ppfeufer2-click-social-media-buttonsMatch0.32.1

ppfeufer2-click-social-media-buttonsMatch0.32.2

AND

wordpresswordpressMatch-

VendorProductVersionCPE
ppfeufer2-click-social-media-buttons*cpe:2.3:a:ppfeufer:2-click-social-media-buttons:*:*:*:*:*:*:*:*
ppfeufer2-click-social-media-buttons0.1cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.1:-:*:*:*:*:*:*
ppfeufer2-click-social-media-buttons0.2cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.2:*:*:*:*:*:*:*
ppfeufer2-click-social-media-buttons0.3cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.3:*:*:*:*:*:*:*
ppfeufer2-click-social-media-buttons0.10cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.10:*:*:*:*:*:*:*
ppfeufer2-click-social-media-buttons0.11cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.11:*:*:*:*:*:*:*
ppfeufer2-click-social-media-buttons0.11cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.11:r1:*:*:*:*:*:*
ppfeufer2-click-social-media-buttons0.11cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.11:r2:*:*:*:*:*:*
ppfeufer2-click-social-media-buttons0.12cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.12:*:*:*:*:*:*:*
ppfeufer2-click-social-media-buttons0.13cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.13:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
ppfeufer	2-click-social-media-buttons	*	cpe:2.3:a:ppfeufer:2-click-social-media-buttons::::::::
ppfeufer	2-click-social-media-buttons	0.1	cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.1:-::::::
ppfeufer	2-click-social-media-buttons	0.2	cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.2:::::::*
ppfeufer	2-click-social-media-buttons	0.3	cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.3:::::::*
ppfeufer	2-click-social-media-buttons	0.10	cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.10:::::::*
ppfeufer	2-click-social-media-buttons	0.11	cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.11:::::::*
ppfeufer	2-click-social-media-buttons	0.11	cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.11:r1::::::
ppfeufer	2-click-social-media-buttons	0.11	cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.11:r2::::::
ppfeufer	2-click-social-media-buttons	0.12	cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.12:::::::*
ppfeufer	2-click-social-media-buttons	0.13	cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.13:::::::*

Rows per page:

1-10 of 391

References

plugins.trac.wordpress.org/changeset?old_path=%2F2-click-socialmedia-buttons&old=532798&new_path=%2F2-click-socialmedia-buttons&new=532798

wordpress.org/extend/plugins/2-click-socialmedia-buttons/changelog/

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

Confidence

High

EPSS

0.002

Percentile

53.0%

JSON

Related for CVE-2012-4272