CVE-2013-3491

Published: Jul 16, 2013Modified: Apr 29, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

Multiple cross-site request forgery (CSRF) vulnerabilities in the Sharebar plugin 1.2.5 for WordPress allow remote attackers to hijack the authentication of administrators for requests that (1) add or (2) modify buttons, or (3) insert cross-site scripting (XSS) sequences.

Affected (1)

Products: Mdolon: Sharebar

1 product

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Mdolon Sharebar	Version 1.2.5

Running on/with	Platform Versions
Wordpress Wordpress	All versions

Related CWEs

Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

References (6)

http://secunia.com/advisories/52948

Source: PSIRT-CNA@flexerasoftware.com

Vendor Advisory

http://www.securityfocus.com/bid/60956

Source: PSIRT-CNA@flexerasoftware.com

https://exchange.xforce.ibmcloud.com/vulnerabilities/85438

Source: PSIRT-CNA@flexerasoftware.com

http://secunia.com/advisories/52948

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/60956

Source: af854a3a-2127-422b-91ae-364da2661108

https://exchange.xforce.ibmcloud.com/vulnerabilities/85438

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.