Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2021-11325

Malware in sbrugna...

5.4CVSS5.6AI score0.00629EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2025/05/23 6:41 a.m.7 views

CVE-2024-10666

The Easy Twitter Feed – Twitter feeds plugin for WP plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.6 via the etf shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract data from...

4.3CVSS6.7AI score0.00435EPSS
Exploits0References1
NVD
NVD
added 2024/11/22 6:15 a.m.22 views

CVE-2024-10666

The Easy Twitter Feed – Twitter feeds plugin for WP plugin for WordPress is vulnerable to Information Exposure in all versions up to, and including, 1.2.6 via the etf shortcode. This makes it possible for authenticated attackers, with Contributor-level access and above, to extract data from...

4.3CVSS0.00435EPSS
Exploits0References3
CNNVD
CNNVD
added 2024/11/22 12:0 a.m.5 views

WordPress plugin Easy Twitter Feed 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

4.3CVSS7.9AI score0.00435EPSS
Exploits0References2
Patchstack
Patchstack
added 2024/11/21 10:19 p.m.3 views

WordPress Easy Twitter Feed plugin <= 1.2.6 - Authenticated (Contributor+) Post Exposure vulnerability

Authenticated Contributor+ Post Exposure vulnerability discovered by Francesco Carlucci in WordPress Plugin Easy Twitter Feed versions = 1.2.6...

4.3CVSS7AI score0.00435EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/11/21 12:0 a.m.11 views

WordPress Easy Twitter Feed Plugin <= 1.2.6 is vulnerable to Broken Access Control

Software Easy Twitter Feed Type Plugin Vulnerable versions = 1.2.6 Fixed in N/A OWASP Top 10 A7: Identification and Authentication Failures Classification Broken Access Control CVE CVE-2024-10666 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 7120bb84b17b Credits Francesc...

4.3CVSS6.5AI score0.00435EPSS
Exploits0References2Affected Software1
NVD
NVD
added 2021/10/18 2:15 p.m.9 views

CVE-2021-24413

The Easy Twitter Feed WordPress plugin before 1.2 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode...

5.4CVSS0.00629EPSS
Exploits2References1
OSV
OSV
added 2021/10/18 2:15 p.m.3 views

CVE-2021-24413

The Easy Twitter Feed WordPress plugin before 1.2 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode...

5.4CVSS5.8AI score0.00629EPSS
Exploits2References1
Prion
Prion
added 2021/10/18 2:15 p.m.16 views

Cross site scripting

The Easy Twitter Feed WordPress plugin before 1.2 does not sanitise or validate the parameters from its shortcode, allowing users with a role as low as contributor to set Cross-Site Scripting payload in them which will be triggered in the page/s with the embed malicious shortcode...

3.5CVSS5.3AI score0.00629EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2021/10/18 1:45 p.m.50 views

CVE-2021-24413

Vulnerability: CVE-2021-24413 affects the WordPress Easy Twitter Feed plugin (versions

5.4CVSS5.3AI score0.00629EPSS
Exploits2References1Affected Software1
CNNVD
CNNVD
added 2021/10/18 12:0 a.m.3 views

WordPress 插件跨站脚本漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress Plugin is an open source application plugin for WordPress. A cross-site scripting vulnerability exists i...

5.4CVSS5.5AI score0.00629EPSS
Exploits2References2
Patchstack
Patchstack
added 2021/09/20 12:0 a.m.24 views

WordPress Easy Twitter Feed plugin <= 1.1 - Stored Cross-Site Scripting (XSS) vulnerability

Stored Cross-Site Scripting XSS vulnerability discovered by Michał Lipiński in WordPress Easy Twitter Feed plugin versions = 1.1. Solution Update the WordPress Easy Twitter Feed plugin to the latest available version at least 1.2...

5.4CVSS1.4AI score0.00629EPSS
Exploits2References3Affected Software1
Rows per page
Query Builder