WordPress Add Social Share Messenger Buttons Whatsapp and Viber plugin <= 1.0.8 - Cross-site Request Forgery (CSRF) vulnerability
Product
Add Social Share Messenger Buttons Whatsapp and Viber
Description
Cross-site Request Forgery (CSRF) vulnerability found by ThreatPress Research Team in WordPress Add Social Share Messenger Buttons Whatsapp and Viber plugin (versions <= 1.0.8).
Solution
3 June 2018 - plugin still closed by WordPress Security team, no patched version available.
Classification
Type Cross Site Request Forgery (CSRF) OWASP Top 10 A8: Cross Site Request Forgery (CSRF)