Lucene search
Manideep KPATCHSTACK:C12726593322DF759FA22A2FDC42D1C7HistoryDec 17, 2014 - 12:00 a.m.
WordPress WP Twimp Plugin - CSRF and XSS
2014-12-1700:00:00
Manideep K
patchstack.com
6
0.002 Low
EPSS
Percentile
52.4%
Because of these cross site request forgery vulnerabilities, the attackers can hijack the authentication of administrators for requests. In that way they can change plugin settings via unspecified vectors or conduct cross-site scripting attacks.
Solution
Not yet Fixed.
Related
packetstorm
packetstorm
WordPress twimp-wp Cross Site Request Forgery / Cross Site Scripting
2014-12-18 00:00:00
wpvulndb
wpvulndb
Twimp WP <= 0.1 - Multiple CSRF
2014-12-18 00:00:00
nvd
nvd
CVE-2014-9397
2014-12-31 21:59:10
cve
cve
CVE-2014-9397
2014-12-31 21:59:10
cvelist
cvelist
CVE-2014-9397
2014-12-31 21:00:00
prion
prion
Cross site request forgery (csrf)
2014-12-31 21:59:00