CVE-2016-10986

The tweet-wheel plugin before 1.0.3.3 for WordPress has XSS via consumerkey, consumersecret, accesstoken, and accesstokensecret...

EUVD-2016-1977

Malware in sbrugna...

CVE-2016-10986

The tweet-wheel plugin before 1.0.3.3 for WordPress has XSS via consumerkey, consumersecret, accesstoken, and accesstokensecret...

CVE-2016-10986

The tweet-wheel plugin before 1.0.3.3 for WordPress has XSS via consumerkey, consumersecret, accesstoken, and accesstokensecret...

CVE-2016-10986

The tweet-wheel plugin before 1.0.3.3 for WordPress has XSS via consumerkey, consumersecret, accesstoken, and accesstokensecret...

CVE-2016-10986

CVE-2016-10986 concerns the Tweet Wheel WordPress plugin prior to version 1.0.3.3, which is vulnerable to reflected Cross-Site Scripting (XSS) via the OAuth parameters consumer_key, consumer_secret, access_token, and access_token_secret. The issue is documented across multiple feeds (NVD, Red Hat...

WordPress Tweet-Wheel 1.0.3.2 Cross Site Scripting

FULL DISCLOSURE Product :Tweet-wheel Exploit Author : Rahul Pratap Singh Version :1.0.3.2 Home page Link : https://wordpress.org/plugins/tweet-wheel/ Website : 0x62626262.wordpress.com Linkedin : https://in.linkedin.com/in/rahulpratapsingh94 Date : 21/4/2016 XSS Vulnerability:...

Tweet Wheel <= 1.0.3.2 - Reflected Cross-Site Scripting (XSS)

The Tweet Wheel WordPress plugin was affected by a Reflected Cross-Site Scripting XSS security vulnerability...

WordPress Tweet Wheel Plugin <= 1.0.3.2 - Reflected Cross Site Scripting

This plugin is prone to a reflected cross site scripting vulnerability, because "consumerkey", "consumersecret,accesstoken", "accesstokensecret" parameters are not sanitized. Solution Update the plugin...