Lucene search
K

4 matches found

NVD
NVD
added 2024/01/05 9:15 a.m.26 views

CVE-2023-52136

Cross-Site Request Forgery CSRF vulnerability in Smash Balloon Custom Twitter Feeds – A Tweets Widget or X Feed Widget.This issue affects Custom Twitter Feeds – A Tweets Widget or X Feed Widget: from n/a through 2.1.2...

8.8CVSS5.7AI score0.00223EPSS
Exploits0References1
CVE
CVE
added 2024/01/05 8:33 a.m.54 views

CVE-2023-52136

CVE-2023-52136 is a Cross-Site Request Forgery (CSRF) vulnerability in Smash Balloon Custom Twitter Feeds (also named Custom Twitter Feeds – A Tweets Widget or X Feed Widget). Affected: Custom Twitter Feeds plugin for WordPress, up to version 2.1.2. The related Wordfence entry confirms CSRF expos...

8.8CVSS8.5AI score0.00223EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/01/05 8:33 a.m.1 views

CVE-2023-52136 WordPress Custom Twitter Feeds (Tweets Widget) Plugin <= 2.1.2 is vulnerable to Cross Site Request Forgery (CSRF)

Cross-Site Request Forgery CSRF vulnerability in Smash Balloon Custom Twitter Feeds – A Tweets Widget or X Feed Widget.This issue affects Custom Twitter Feeds – A Tweets Widget or X Feed Widget: from n/a through 2.1.2...

4.3CVSS6.3AI score0.00223EPSS
Exploits0References1
Patchstack
Patchstack
added 2023/12/28 12:0 a.m.13 views

WordPress Custom Twitter Feeds (Tweets Widget) Plugin <= 2.1.2 is vulnerable to Cross Site Request Forgery (CSRF)

Software Custom Twitter Feeds Tweets Widget Type Plugin Vulnerable versions = 2.1.2 Fixed in 2.2 OWASP Top 10 A5: Security Misconfiguration Classification Cross Site Request Forgery CSRF CVE CVE-2023-52136 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 5f069383b9f0 Credit...

8.8CVSS6.6AI score0.00223EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder