Description
WordPress Plugin Facebook Button by BestWebSoft is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin Facebook Button by BestWebSoft version 2.13 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.14 or latest
References
Related Vulnerabilities
Oracle Application Server CVE-2006-0291 Vulnerability (CVE-2006-0291)
WordPress Plugin Blaze Slideshow Arbitrary File Upload (2.7)
Plone CMS Other Vulnerability (CVE-2006-1711)
WordPress Plugin True Ranker Directory Traversal (2.2.2)
TYPO3 Deserialization of Untrusted Data Vulnerability (CVE-2019-19849)