Really Simple Security logo

Log out
Get PRO

Latest

Access violation vulnerability in Hubbub Lite (formerly Grow Social) 1.20.3

  • Severity: medium-risk
  • Status: Fixed
  • Publication: December 1, 2023

The Social Pug WordPress plugin has a security vulnerability that allows unauthenticated attackers to make unauthorized changes to data. This vulnerability is present in all versions up to 1.20.3 of the plugin, and allows attackers to dismiss admin notifications and update the database without being authenticated.

Detected in:

Hubbub Lite fixed vulnerable versions:
Hubbub Lite – Fast Social Share & Follow Buttons + Audience Growth Plugin fixed vulnerable versions:
Hubbub Lite – Fast, free social sharing and follow buttons fixed vulnerable versions:
Hubbub Lite – Fast, Reliable Social Network Sharing Buttons fixed vulnerable versions:
Hubbub Lite – Fast, Reliable Social Sharing Buttons fixed vulnerable versions:
Hubbub Lite (formerly Grow Social) fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.