Lucene search
PatchstackCVE-2022-27235HistoryJul 22, 2022 - 5:15 p.m.
CVE-2022-27235
2022-07-2217:15:08
CWE-264
Patchstack
web.nvd.nist.gov
54
8
cve-2022-27235
broken access control
social share buttons
supsystic plugin
wordpress
vulnerability
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
40.8%
Multiple Broken Access Control vulnerabilities in Social Share Buttons by Supsystic plugin <= 2.2.3 at WordPress.
Affected configurations
Node
supsysticsocial_share_buttonsRange<2.2.4wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| supsystic | social_share_buttons | * | cpe:2.3:a:supsystic:social_share_buttons:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"product": "Social Share Buttons by Supsystic (WordPress plugin)",
"vendor": "Supsystic",
"versions": [
{
"lessThanOrEqual": "2.2.3",
"status": "affected",
"version": "<= 2.2.3",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
prion
prion
Improper access control
2022-07-22 17:15:00
patchstack
patchstack
nvd
nvd
CVE-2022-27235
2022-07-22 17:15:08
cnvd
cnvd
WordPress Social Share Buttons Access Control Error Vulnerability
2022-07-26 00:00:00
cvelist
cvelist
wpvulndb
wpvulndb
Social Share Buttons by Supsystic < 2.2.4 - Subscriber+ Unauthorised Actions
2022-06-09 00:00:00
CVSS3
8.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
AI Score
8.8
Confidence
High
EPSS
0.001
Percentile
40.8%
Related for CVE-2022-27235