Security Advisory

CVE-2023-5070

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-10-20 07:29:38

Last updated 2026-04-08 17:30:55

Assigner Wordfence

State PUBLISHED

Description

The Social Media Share Buttons & Social Sharing Icons plugin for WordPress is vulnerable to Sensitive Information Exposure in versions up to, and including, 2.8.5 via the sfsi_save_export function. This can allow subscribers to export plugin settings that include social media authentication tokens and secrets as well as app passwords.

← Browse all CVEs View on cve.org ↗