Social Share Buttons for WordPress Unauthenticated Image Upload Vulnerability

Vulnerability

A vulnerability in the Social Share Buttons for WordPress plugin, affecting versions through 2.7, allows unauthenticated users to upload arbitrary images and manipulate the upload path. This could potentially be exploited for path traversal attacks.

Impact

Exploitation of this vulnerability could lead to unauthorized image uploads and manipulation of file paths, possibly allowing for path traversal.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

8.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.0

exploitability

8.7

remediation

0.0

relevance

0.0

threat

6.4

urgency

2.9

incentive

5.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Social Share Buttons for WordPress Unauthenticated Image Upload Vulnerability

Vulnerability

Impact

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating