Supsystic Social Share Buttons — known CVE vulnerabilities
Every CVE whose affected-product data names Supsystic Social Share Buttons, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (5)
CVE-2022-33960 — CVSS 8.5 (high): Multiple Authenticated (subscriber or higher user role) SQL Injection (SQLi) vulnerabilities in Social Share Buttons by Supsystic plugin <=…
CVE-2022-27235 — CVSS 6.3 (medium): Multiple Broken Access Control vulnerabilities in Social Share Buttons by Supsystic plugin <= 2.2.3 at WordPress.
CVE-2021-36890 — CVSS 4.3 (medium): Cross-Site Request Forgery (CSRF) vulnerability in Social Share Buttons by Supsystic plugin <= 2.2.2 at WordPress.
CVE-2022-1653 — CVSS 4.3 (medium): The Social Share Buttons by Supsystic WordPress plugin before 2.2.4 does not perform CSRF checks in it's ajax endpoints and admin pages…
CVE-2024-47330 — CVSS 4.3 (medium): Missing Authorization vulnerability in Supsystic Slider by Supsystic, Supsystic Social Share Buttons by Supsystic.This issue affects Slider…