Description
WordPress Plugin Social Rocket-Social Sharing is prone to a cross-site request forgery vulnerability. Exploiting this issue may allow a remote attacker to perform certain administrative actions and gain unauthorized access to the affected application; other attacks are also possible. WordPress Plugin Social Rocket-Social Sharing version 1.2.9 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.2.10 or latest
References
https://jvn.jp/en/jp/JVN05502028/index.html
https://plugins.svn.wordpress.org/social-rocket/trunk/readme.txt
Related Vulnerabilities
MySQL CVE-2013-1512 Vulnerability (CVE-2013-1512)
WordPress Plugin Frontend Uploader Cross-Site Scripting (0.9.2)
WordPress Plugin WP-Stats Multiple Vulnerabilities (2.51)
Apache HTTP Server Use of Uninitialized Resource Vulnerability (CVE-2020-1934)
OpenSSL Uncontrolled Recursion Vulnerability (CVE-2018-0739)