Description
WordPress Plugin Social Sharing-Kiwi is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently change option values that would permit to turn on user registration. WordPress Plugin Social Sharing-Kiwi version 2.0.10 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 2.0.11 or latest
References
Related Vulnerabilities
WordPress Plugin Swipe Checkout for eShop Cross-Site Scripting (3.7.0)
WordPress Plugin Jetpack-WP Security, Backup, Speed, & Growth Multiple Vulnerabilities (4.0.3)
Oracle JRE CVE-2014-2412 Vulnerability (CVE-2014-2412)
PostgreSQL CVE-2017-7548 Vulnerability (CVE-2017-7548)
WordPress Plugin 3D Slider Slice Box Multiple Cross-Site Scripting Vulnerabilities (1.0)