Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:20 a.m.7 views

CVE-2024-8043

The Vikinghammer Tweet WordPress plugin through 0.2.4 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

5.7CVSS5.8AI score0.00151EPSS
Exploits0References1
NVD
NVD
added 2024/09/17 6:15 a.m.17 views

CVE-2024-8043

The Vikinghammer Tweet WordPress plugin through 0.2.4 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

5.7CVSS0.00151EPSS
Exploits0References1
OSV
OSV
added 2024/09/17 6:15 a.m.3 views

CVE-2024-8043

The Vikinghammer Tweet WordPress plugin through 0.2.4 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

5.4CVSS5.8AI score0.00151EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/17 6:0 a.m.22 views

CVE-2024-8043 Vikinghammer Tweet <= 0.2.4 - Stored XSS via CSRF

The Vikinghammer Tweet WordPress plugin through 0.2.4 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

0.00151EPSS
Exploits0References1
CVE
CVE
added 2024/09/17 6:0 a.m.53 views

CVE-2024-8043

The CVE-2024-8043 entry concerns the Vikinghammer Tweet WordPress plugin (

5.7CVSS5.6AI score0.00151EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2024/09/17 12:0 a.m.3 views

WordPress plugin Vikinghammer Tweet 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability exists in...

5.7CVSS6.1AI score0.00151EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/08/29 1:6 a.m.4 views

WordPress Vikinghammer Tweet plugin <= 0.2.4 - Stored XSS via CSRF vulnerability

Stored XSS via CSRF vulnerability discovered by Daniel Ruf in WordPress Plugin Vikinghammer Tweet versions = 0.2.4...

5.7CVSS6AI score0.00151EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/08/29 12:0 a.m.10 views

WordPress Vikinghammer Tweet Plugin <= 0.2.4 is vulnerable to Cross Site Request Forgery (CSRF)

Software Vikinghammer Tweet Type Plugin Vulnerable versions = 0.2.4 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-8043 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 95a37ffec80a Credits Daniel Ruf Required...

5.7CVSS6.7AI score0.00151EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder