5 matches found
Code injection
The Design Chemical Social Network Tabs plugin 1.7.1 for WordPress allows remote attackers to discover Twitter accesstoken, accesstokensecret, consumerkey, and consumersecret values by reading the dcwptwitter.php source code. This leads to Twitter account takeover...
WordPress Social Network Tabs Information Disclosure Vulnerability
WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Social Network Tabs is a social media plugin used in it. A security vulnerability exists in WordPress Social Network Tabs. An attacker...
WordPress Social Network Tabs Plugin Information Disclosure Vulnerability
The WordPress Plugin Social Network Tabs, made by the company Design Chemical, is leaking twice the Twitter accesstoken, accesstokensecret, consumerkey and consumersecret of their user which is leading to a takeover of their Twitter account. Copyright C 2019 Greenbone Networks GmbH Some text...
WordPress Social Network Tabs premium plugin <=1.7.1 - Social Media API Key Leakage vulnerability
Social Media API Key Leakage vulnerability found by @fs0c131y in WordPress Social Network Tabs premium plugin versions =1.7.1. Solution 26 January 2019 - we were unable to find any information about the patched version of this plugin. We recommend to deactivate and delete this plugin from your...
WordPress Social-Stream 1.6.0 Twitter API Secret Disclosure
Wordpress Plugin Social-Stream - Exposure of Twitter API Secret Keys CWE-522 :Insufficiently Protected Credentials Products: Wordpress Social Stream Versions 1.6.0 and lower https://codecanyon.net/item/wordpress-social-stream/2201708 Social Network Tabs Versions 1.7.4 and lower...