CVE-2024-0379
CVE-2024-0379 - CSRF in Custom Twitter Feeds (WordPress) up to version 2.2.1 stems from missing/incorrect nonce validation in the ctf_auto_save_tokens function. This allows unauthenticated attackers to forge requests and update a site’s Twitter API token and secret if the admin is duped into perf...