Description
A vulnerability has been found in BestWebSoft Facebook Like Button up to 2.13 and classified as problematic. Affected by this vulnerability is the function fcbk_bttn_plgn_settings_page of the file facebook-button-plugin.php. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The patch is named 33144ae5a45ed07efe7fceca901d91365fdbf7cb. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-225355.
CVSS breakdown
CVSS 3.1
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
Required
Scope
Unchanged
Confidentiality
None
Integrity
Low
Availability
None
Affected products
- bestwebsoft / Facebook Like Button2.0 – 2.0
- bestwebsoft / Facebook Like Button2.1 – 2.1
- bestwebsoft / Facebook Like Button2.2 – 2.2
- bestwebsoft / Facebook Like Button2.3 – 2.3
- bestwebsoft / Facebook Like Button2.4 – 2.4
- bestwebsoft / Facebook Like Button2.5 – 2.5
- bestwebsoft / Facebook Like Button2.6 – 2.6
- bestwebsoft / Facebook Like Button2.7 – 2.7
- bestwebsoft / Facebook Like Button2.8 – 2.8
- bestwebsoft / Facebook Like Button2.9 – 2.9
- bestwebsoft / Facebook Like Button2.10 – 2.10
- bestwebsoft / Facebook Like Button2.11 – 2.11
- bestwebsoft / Facebook Like Button2.12 – 2.12
- bestwebsoft / Facebook Like Button2.13 – 2.13