CVE-2012-10012

Summary

A vulnerability has been found in BestWebSoft Facebook Like Button up to 2.13 and classified as problematic. Affected by this vulnerability is the function fcbk_bttn_plgn_settings_page of the file facebook-button-plugin.php. The manipulation leads to cross-site request forgery. The attack can be launched remotely. The patch is named 33144ae5a45ed07efe7fceca901d91365fdbf7cb. It is recommended to apply a patch to fix this issue. The associated identifier of this vulnerability is VDB-225355.

Affected Software

VendorProductVersion RangeStatus
BestWebSoftFacebook Like Button2.0affected
BestWebSoftFacebook Like Button2.1affected
BestWebSoftFacebook Like Button2.2affected
BestWebSoftFacebook Like Button2.3affected
BestWebSoftFacebook Like Button2.4affected
BestWebSoftFacebook Like Button2.5affected
BestWebSoftFacebook Like Button2.6affected
BestWebSoftFacebook Like Button2.7affected
BestWebSoftFacebook Like Button2.8affected
BestWebSoftFacebook Like Button2.9affected
BestWebSoftFacebook Like Button2.10affected
BestWebSoftFacebook Like Button2.11affected
BestWebSoftFacebook Like Button2.12affected
BestWebSoftFacebook Like Button2.13affected

Weaknesses

  • CWE-352: CWE-352 Cross-Site Request Forgery

ADP Enrichment

CVE Program Container

Additional References

References