5 matches found
CVE-2023-0602
The Twittee Text Tweet WordPress plugin through 1.0.8 does not properly escape POST values which are printed back to the user inside one of the plugin's administrative page, which allows reflected XSS attacks targeting administrators to happen...
CVE-2023-0602
The Twittee Text Tweet WordPress plugin through 1.0.8 does not properly escape POST values which are printed back to the user inside one of the plugin's administrative page, which allows reflected XSS attacks targeting administrators to happen...
CVE-2023-0602
The CVE-2023-0602 entry concerns the WordPress plugin Twittee Text Tweet (versions
CVE-2023-0602 Twittee Text Tweet <= 1.0.8 - Reflected XSS
The Twittee Text Tweet WordPress plugin through 1.0.8 does not properly escape POST values which are printed back to the user inside one of the plugin's administrative page, which allows reflected XSS attacks targeting administrators to happen...
WordPress Twittee Text Tweet Plugin <= 1.0.8 is vulnerable to Cross Site Scripting (XSS)
Software Twittee Text Tweet Type Plugin Vulnerable versions = 1.0.8 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0602 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID aa28f842b39a Credits Shreya Pohekar...