Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2014-9399
HistoryDec 31, 2014 - 9:00 p.m.

CVE-2014-9399

2014-12-3121:00:00
mitre
www.cve.org
7

AI Score

6.4

Confidence

High

EPSS

0.004

Percentile

75.0%

JSON

Cross-site request forgery (CSRF) vulnerability in the TweetScribe plugin 1.1 and earlier for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting (XSS) attacks via the tweetscribe_username parameter in a save action in the tweetscribe.php page to wp-admin/options-general.php.

Related

prion 1
packetstorm 1
cve 1
patchstack 1
wpvulndb 1
nvd 1
prion
prion
Cross site request forgery (csrf)
2014-12-31 21:59:00
packetstorm
packetstorm
WordPress TweetScribe 1.1 CSRF / XSS
2014-12-18 00:00:00
cve
cve
CVE-2014-9399
2014-12-31 21:59:12
patchstack
patchstack
WordPress TweetScribe Plugin <= 1.1 - CSRF and XSS
2014-12-17 00:00:00
wpvulndb
wpvulndb
Tweetscribe <= 1.1 - Multiple CSRF
2014-12-18 00:00:00
nvd
nvd
CVE-2014-9399
2014-12-31 21:59:12

AI Score

6.4

Confidence

High

EPSS

0.004

Percentile

75.0%

JSON
Related for CVELIST:CVE-2014-9399
prion1packetstorm1cve1patchstack1wpvulndb1nvd1