Description
WordPress Plugin Sharebar is prone to an SQL injection vulnerability and a cross-site scripting vulnerability. Exploiting these issues could allow an attacker to steal cookie-based authentication credentials, compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database. WordPress Plugin Sharebar version 1.2.1 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.2.2 or latest
References
Related Vulnerabilities
WordPress Plugin Gallery by BestWebSoft Cross-Site Scripting (4.2.1)
Jboss EAP Inadequate Encryption Strength Vulnerability (CVE-2014-0224)
Apache Tomcat version older than 7.0.30
WordPress Plugin Contact Form DB-Elementor Cross-Site Scripting (1.7)
WordPress Plugin Websimon Tables Cross-Site Scripting (1.3.4)