Title: Security vulnerability for version <= 3.2.2 Last modified: April 15, 2025 --- # Security vulnerability for version <= 3.2.2 * Resolved [ciaranmcauleygeant](https://wordpress.org/support/users/ciaranmcauleygeant/) * (@ciaranmcauleygeant) * [1 year ago](https://wordpress.org/support/topic/security-vulnerability-for-version-3-2-2/) * Hi there’s a security vulnerability reported for this plugin on patchstack [https://patchstack.com/database/wordpress/plugin/googleanalytics/vulnerability/wordpress-sharethis-dashboard-for-google-analytics-plugin-3-2-2-cross-site-request-forgery-csrf-vulnerability?_a_id=473](https://patchstack.com/database/wordpress/plugin/googleanalytics/vulnerability/wordpress-sharethis-dashboard-for-google-analytics-plugin-3-2-2-cross-site-request-forgery-csrf-vulnerability?_a_id=473). * We’re currently using this plugin so would like to know if you plan to address this issue soon? * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fsecurity-vulnerability-for-version-3-2-2%2F%3Foutput_format%3Dmd&locale=en_US) to see the link]_ Viewing 2 replies - 1 through 2 (of 2 total) * Plugin Author [ShareThis](https://wordpress.org/support/users/sharethis/) * (@sharethis) * [11 months, 3 weeks ago](https://wordpress.org/support/topic/security-vulnerability-for-version-3-2-2/#post-18440109) * Hey thanks for reaching out. We have attempted to address any sort of security issues in ver. 3.2.3, but Patchstack is not a very accurate source for CSRF vulnerabilities so not sure if/when they’re update their status. That being said, WordPress had previously reached out and did an extensive dive into our code and noted things that we have addressed in 3.2.2 and were satisfied with our approach. The plugin is not at risk for any forgery requests at this point in time so feel free to continue using it as normal.Remember to always keep an eye on your current user lists and do quarterly audits to remove any nefarious accounts. That will minimize your risk of users accessing your site’s DB altogether.Let me know if you have any more questions. Thanks!ShareThis * [Hector](https://wordpress.org/support/users/hectorsharethis/) * (@hectorsharethis) * [6 months, 3 weeks ago](https://wordpress.org/support/topic/security-vulnerability-for-version-3-2-2/#post-18656341) * Hi @ciaranmcauleygean – Patchstack has finally updated the report and confirm this has been fixed. * [https://patchstack.com/database/wordpress/plugin/simple-share-buttons-adder/vulnerability/wordpress-simple-share-buttons-adder-plugin-8-4-6-cross-site-request-forgery-csrf?_a_id=350](https://patchstack.com/database/wordpress/plugin/simple-share-buttons-adder/vulnerability/wordpress-simple-share-buttons-adder-plugin-8-4-6-cross-site-request-forgery-csrf?_a_id=350) Viewing 2 replies - 1 through 2 (of 2 total) The topic ‘Security vulnerability for version <= 3.2.2’ is closed to new replies. * ![](https://s.w.org/plugins/geopattern-icon/googleanalytics_b8e236.svg) * [ShareThis Dashboard for Google Analytics](https://wordpress.org/plugins/googleanalytics/) * [Frequently Asked Questions](https://wordpress.org/plugins/googleanalytics/#faq) * [Support Threads](https://wordpress.org/support/plugin/googleanalytics/) * [Active Topics](https://wordpress.org/support/plugin/googleanalytics/active/) * [Unresolved Topics](https://wordpress.org/support/plugin/googleanalytics/unresolved/) * [Reviews](https://wordpress.org/support/plugin/googleanalytics/reviews/) * 4 replies * 3 participants * Last reply from: [Hector](https://wordpress.org/support/users/hectorsharethis/) * Last activity: [6 months, 3 weeks ago](https://wordpress.org/support/topic/security-vulnerability-for-version-3-2-2/#post-18656341) * Status: resolved