Trojan Horse Vulnerability in Social Media Widget Plugin for WordPress
CVE-2013-1949

Currently unrated

Key Information:

Vendor: Wordpress
Status: Social-media-widget
Vendor: CVE Published:; 25 April 2013

Summary

The Social Media Widget plugin for WordPress version 4.0 has been found to have a severe security flaw, allowing remote attackers to exploit an externally introduced modification. This vulnerability can lead to the upload of arbitrary files on the server, potentially hijacking the site or injecting malicious scripts that could compromise its integrity and security. It is critical for users to review their installations and implement security updates to mitigate the risks associated with this vulnerability.

References

http://it.slashdot.org/story/13/04/13/212226/popular-word...

x_refsource_MISC

http://securityledger.com/hacked-wordpress-plug-in-put-on...

x_refsource_MISC

http://www.openwall.com/lists/oss-security/2013/04/14/1

mailing-listx_refsource_MLIST

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 25, 2013