Is PHP affected by EUVD-2026-19596?

Analytify Simple Social Media Share Buttons WordPress plugin versions 6.2.0 and earlier contain a Cross-Site Request Forgery vulnerability that allows unauthenticated attackers to perform unauthorized administrative actions through social engineering.

EUVD-2026-19596

| CVE-2026-34904 HIGH

2026-04-07 Patchstack

GHSA-jp4w-vjf8-5c76

7.5

CVSS 3.1

CVSS Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Lifecycle Timeline

Analysis Generated

Apr 07, 2026 - 08:45 vuln.today

EUVD ID Assigned

Apr 07, 2026 - 08:45 euvd

EUVD-2026-19596

CVE Published

Apr 07, 2026 - 08:22 nvd

HIGH 7.5

Description

Cross-Site Request Forgery (CSRF) vulnerability in Analytify Simple Social Media Share Buttons allows Cross Site Request Forgery.This issue affects Simple Social Media Share Buttons: from n/a through 6.2.0.

Analysis

Cross-Site Request Forgery in Analytify Simple Social Media Share Buttons WordPress plugin (versions ≤6.2.0) enables unauthenticated remote attackers to execute unauthorized actions on behalf of authenticated administrators through high-complexity social engineering attacks. CVSS 7.5 severity reflects potential for complete compromise of confidentiality, integrity, and availability when successfully exploited. …

Remediation

Within 24 hours: Identify all WordPress instances running Analytify Simple Social Media Share Buttons and document current version numbers. Within 7 days: Disable or deactivate the plugin on all affected installations until a patch is released; consider alternative social sharing solutions. …

Analysis

Detailed AI-generated intelligence summary covering attack vector, impact assessment, affected versions, remediation steps, and indicators of compromise.

POChttps://••••••••••.com/exploit

PATCHhttps://••••••••••.com/patch

ADVISORYhttps://••••••••••.com/advisory

Full analysis requires sign-in

Get intelligence summaries, risk assessment, exploit details, threat intel, and remediation guidance.

Priority Score

Low Medium High Critical

KEV: 0

EPSS: +0.0

CVSS: +38

POC: 0

EUVD-2026-19596 vulnerability details – vuln.today

Back

EUVD-2026-19596

CVSS Vector

Lifecycle Timeline

Tags

Description

Analysis

Remediation

Full analysis requires sign-in

Priority Score

Share

External POC / Exploit Code