CVE-2014-9336
Multiple cross-site request forgery CSRF vulnerabilities in the iTwitter plugin 0.04 and earlier for WordPress allow remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the 1 itexttwitterusername or 2 itexttwitteruserpass...