CVE-2013-0234

🗓️ 02 Feb 2014 20:55:14Reported by [email protected]Type

Cross-site scripting vulnerability in Twitter widget in Elgg before 1.7.17 and 1.8.

Reporter	Title	Published	Views	Family All 4
CVE	CVE-2013-0234	2 Feb 201420:00	–	cve
Cvelist	CVE-2013-0234	2 Feb 201420:00	–	cvelist
EUVD	EUVD-2013-0267	7 Oct 202500:30	–	euvd
Prion	Cross site scripting	2 Feb 201420:55	–	prion

NVD

Node

elgg elggMatch1.8.0.1

elgg elggMatch1.8.1

elgg elggMatch1.8.3

elgg elggMatch1.8.4

elgg elggMatch1.8.5

elgg elggMatch1.8.6

elgg elggMatch1.8.7

elgg elggMatch1.8.8

elgg elggMatch1.8.9

elgg elggMatch1.8.10

elgg elggMatch1.8.11

elgg elggMatch1.8.12

Node

elgg elggRange≤1.7.16

elgg elggMatch1.7.0

elgg elggMatch1.7.1

elgg elggMatch1.7.2

elgg elggMatch1.7.3

elgg elggMatch1.7.4

elgg elggMatch1.7.5

elgg elggMatch1.7.6

elgg elggMatch1.7.7

elgg elggMatch1.7.8

elgg elggMatch1.7.9

elgg elggMatch1.7.10

elgg elggMatch1.7.11

elgg elggMatch1.7.12

elgg elggMatch1.7.13

elgg elggMatch1.7.14

elgg elggMatch1.7.15

elgg elggMatch1.7.18

Source	Link
securityfocus	www.securityfocus.com/bid/57569
github	www.github.com/Elgg/Elgg/commit/19dc507c2fccb378be2a44a762edf6c1e7afa334
seclists	www.seclists.org/fulldisclosure/2013/Jan/251
blog	www.blog.elgg.org/pg/blog/cash/read/223/elgg-1813-and-1717
openwall	www.openwall.com/lists/oss-security/2013/01/29/4
packetstormsecurity	www.packetstormsecurity.com/files/119903/Elgg-Twitter-Widget-Cross-Site-Scripting.html
github	www.github.com/Elgg/Elgg/commit/a74a88501c41e89c8bcd7fc650ae2f8cc0a5003d
secunia	www.secunia.com/advisories/52007

29 Apr 2026 01:13Current

5.7Medium risk

Vulners AI Score5.7

CVSS 24.3

EPSS0.00545