{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2012-04-18T00:00:00", "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in libs/xing.php in the 2 Click Social Media Buttons plugin before 0.34 for WordPress allows remote attackers to inject arbitrary web script or HTML via the xing-url parameter."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://plugins.trac.wordpress.org/changeset?old_path=%2F2-click-socialmedia-buttons&old=532798&new_path=%2F2-click-socialmedia-buttons&new=532798"}, {"name": "wp2clicksocialmedia-xing-xss(75518)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75518"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.org/files/112615/WordPress-2-Click-Socialmedia-Buttons-Cross-Site-Scripting.html"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://wordpress.org/extend/plugins/2-click-socialmedia-buttons/changelog/"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2012-4273", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cross-site scripting (XSS) vulnerability in libs/xing.php in the 2 Click Social Media Buttons plugin before 0.34 for WordPress allows remote attackers to inject arbitrary web script or HTML via the xing-url parameter."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://plugins.trac.wordpress.org/changeset?old_path=%2F2-click-socialmedia-buttons&old=532798&new_path=%2F2-click-socialmedia-buttons&new=532798", "refsource": "CONFIRM", "url": "http://plugins.trac.wordpress.org/changeset?old_path=%2F2-click-socialmedia-buttons&old=532798&new_path=%2F2-click-socialmedia-buttons&new=532798"}, {"name": "wp2clicksocialmedia-xing-xss(75518)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75518"}, {"name": "http://packetstormsecurity.org/files/112615/WordPress-2-Click-Socialmedia-Buttons-Cross-Site-Scripting.html", "refsource": "MISC", "url": "http://packetstormsecurity.org/files/112615/WordPress-2-Click-Socialmedia-Buttons-Cross-Site-Scripting.html"}, {"name": "http://wordpress.org/extend/plugins/2-click-socialmedia-buttons/changelog/", "refsource": "CONFIRM", "url": "http://wordpress.org/extend/plugins/2-click-socialmedia-buttons/changelog/"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T20:28:07.800Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://plugins.trac.wordpress.org/changeset?old_path=%2F2-click-socialmedia-buttons&old=532798&new_path=%2F2-click-socialmedia-buttons&new=532798"}, {"name": "wp2clicksocialmedia-xing-xss(75518)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75518"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://packetstormsecurity.org/files/112615/WordPress-2-Click-Socialmedia-Buttons-Cross-Site-Scripting.html"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://wordpress.org/extend/plugins/2-click-socialmedia-buttons/changelog/"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2012-4273", "datePublished": "2012-08-13T22:00:00", "dateReserved": "2012-08-13T00:00:00", "dateUpdated": "2024-08-06T20:28:07.800Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:*:*:*:*:*:*:*:*", "matchCriteriaId": "410B15F6-9999-4E2B-BB7F-3AA35E9169D6", "versionEndIncluding": "0.33", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.1:-:*:*:*:*:*:*", "matchCriteriaId": "03FF1EFF-5C89-42D5-AA3A-B648669CF4EE", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.2:*:*:*:*:*:*:*", "matchCriteriaId": "E574C4C6-75DC-41D3-A411-B79D8CFF2122", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.3:*:*:*:*:*:*:*", "matchCriteriaId": "92638A7C-DA6E-4E2E-910A-E621E2A04CA1", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.10:*:*:*:*:*:*:*", "matchCriteriaId": "0FADAFED-4CC8-4776-88EE-DAABAE620A52", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.11:*:*:*:*:*:*:*", "matchCriteriaId": "CDB28F32-2677-4B2C-8B8D-CFEB47744107", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.11:r1:*:*:*:*:*:*", "matchCriteriaId": "E8673325-EFB8-4670-A692-47BC957DCE13", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.11:r2:*:*:*:*:*:*", "matchCriteriaId": "1444A05B-FCF7-47E2-96ED-002DB1868F9F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.12:*:*:*:*:*:*:*", "matchCriteriaId": "C987320A-BED0-42F4-B5F4-96BB1D47B227", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.13:*:*:*:*:*:*:*", "matchCriteriaId": "40465BA2-73EF-4039-A245-F904D8A4982C", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.14:*:*:*:*:*:*:*", "matchCriteriaId": "0B7B7B85-2F96-46CD-B7EF-3C64288A6D4A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.15:*:*:*:*:*:*:*", "matchCriteriaId": "A8E9C1B1-C10B-4059-B6A7-3A0233203B7F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.16:*:*:*:*:*:*:*", "matchCriteriaId": "401F8042-1628-4579-A749-E6831990C270", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.17:*:*:*:*:*:*:*", "matchCriteriaId": "0A735CED-333D-4B3C-B549-4CE10D057690", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.18:*:*:*:*:*:*:*", "matchCriteriaId": "AAF07633-9414-4C40-8811-F105403DDA83", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.18.1:*:*:*:*:*:*:*", "matchCriteriaId": "ADE862D3-06A1-4A11-8492-3BCAFF0E7ACE", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.19:*:*:*:*:*:*:*", "matchCriteriaId": "D6209F33-E930-4BCB-93E5-8B6AA4588108", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.19.1:*:*:*:*:*:*:*", "matchCriteriaId": "685AB2ED-CED8-4CA2-9893-815DEF4758C2", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.20:*:*:*:*:*:*:*", "matchCriteriaId": "2F38B543-B940-49DF-B360-D77E0D1E604D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.21:*:*:*:*:*:*:*", "matchCriteriaId": "D6B1A323-E67A-4D27-B026-6979F02B955A", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.21.1:*:*:*:*:*:*:*", "matchCriteriaId": "671C04C8-885E-44CB-87D8-4864620C1A6F", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.22:*:*:*:*:*:*:*", "matchCriteriaId": "5DCDB6CA-E58C-4100-9664-92AEBBDCC8EA", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.23:*:*:*:*:*:*:*", "matchCriteriaId": "CBF223DC-DB51-4E4D-895A-C6B6C13FA3CC", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.23.1:*:*:*:*:*:*:*", "matchCriteriaId": "7ECBF9B1-4130-470E-BCEC-359535F04F69", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.24:*:*:*:*:*:*:*", "matchCriteriaId": "29017B09-C4D5-45E1-B159-27BE452C8D7D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.24.1:*:*:*:*:*:*:*", "matchCriteriaId": "7EE69E99-8E94-4090-BB2A-10806345D8DA", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.25:*:*:*:*:*:*:*", "matchCriteriaId": "9568FDA1-7D26-4427-857C-84138ADBBABF", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.26:*:*:*:*:*:*:*", "matchCriteriaId": "B4DCA644-908D-4DA8-A782-80153B8CF5AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.27:*:*:*:*:*:*:*", "matchCriteriaId": "9C7F50C5-8F59-48CE-A121-A82E3252AD24", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.27.1:*:*:*:*:*:*:*", "matchCriteriaId": "BD417AA6-51E8-4990-A6BE-953B4B4EEF9E", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.28:*:*:*:*:*:*:*", "matchCriteriaId": "728058CF-021C-40EE-BE81-D9BAB729D033", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.29:*:*:*:*:*:*:*", "matchCriteriaId": "995882C1-E824-429C-A40E-32BB75774BEB", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.30:*:*:*:*:*:*:*", "matchCriteriaId": "749D5044-D242-4AC8-AAC5-7828CBE1DF91", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.31.1:*:*:*:*:*:*:*", "matchCriteriaId": "085FEC07-7170-4DA6-8534-C7720D2D0B76", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.31.2:*:*:*:*:*:*:*", "matchCriteriaId": "DC8075E9-380B-4B1C-8332-9A4A98F1A497", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.31.3:*:*:*:*:*:*:*", "matchCriteriaId": "37E07B73-B280-49F0-B524-73FCC0C89B3D", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.32.1:*:*:*:*:*:*:*", "matchCriteriaId": "1E97D63D-2FD8-43F6-A958-53A5F4242B63", "vulnerable": true}, {"criteria": "cpe:2.3:a:ppfeufer:2-click-social-media-buttons:0.32.2:*:*:*:*:*:*:*", "matchCriteriaId": "95A2AEF9-5604-49A1-9657-4B89BDA4B0BC", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:a:wordpress:wordpress:-:*:*:*:*:*:*:*", "matchCriteriaId": "A77EB0E7-7FA7-4232-97DF-7C7587D163F1", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Cross-site scripting (XSS) vulnerability in libs/xing.php in the 2 Click Social Media Buttons plugin before 0.34 for WordPress allows remote attackers to inject arbitrary web script or HTML via the xing-url parameter."}, {"lang": "es", "value": "Una vulnerabilidad de ejecuci\u00f3n de comandos en sitios cruzados (XSS) en libs/xing.php en el plugin '2 Click Social Media Buttons' antes de v0.34 para WordPress permite a atacantes remotos inyectar secuencias de comandos web o HTML a trav\u00e9s del par\u00e1metro xing-url.\r\n"}], "id": "CVE-2012-4273", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "NONE", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": true}]}, "published": "2012-08-13T22:55:01.567", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://packetstormsecurity.org/files/112615/WordPress-2-Click-Socialmedia-Buttons-Cross-Site-Scripting.html"}, {"source": "cve@mitre.org", "tags": ["Exploit", "Patch"], "url": "http://plugins.trac.wordpress.org/changeset?old_path=%2F2-click-socialmedia-buttons&old=532798&new_path=%2F2-click-socialmedia-buttons&new=532798"}, {"source": "cve@mitre.org", "url": "http://wordpress.org/extend/plugins/2-click-socialmedia-buttons/changelog/"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75518"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://packetstormsecurity.org/files/112615/WordPress-2-Click-Socialmedia-Buttons-Cross-Site-Scripting.html"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit", "Patch"], "url": "http://plugins.trac.wordpress.org/changeset?old_path=%2F2-click-socialmedia-buttons&old=532798&new_path=%2F2-click-socialmedia-buttons&new=532798"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://wordpress.org/extend/plugins/2-click-socialmedia-buttons/changelog/"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75518"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-79"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}