Lucene search
K

7 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2014-9219

Malware in sbrugna...

6.8CVSS6.4AI score0.01001EPSS
Exploits2References3
CNVD
CNVD
added 2015/01/08 12:0 a.m.4 views

WordPress Plugin Twitter LiveBlog Cross-Site Request Forgery Vulnerability

WordPress is a blogging platform developed using the PHP language that allows users to set up their own weblogs on servers that support PHP and MySQL databases.Twitter LiveBlog plugin is a plugin for dynamic posting of articles or tweets. The WordPress plugin Twitter LiveBlog cross-site request...

6.8CVSS6.7AI score0.01001EPSS
Exploits2References1
NVD
NVD
added 2014/12/31 9:59 p.m.22 views

CVE-2014-9398

Cross-site request forgery CSRF vulnerability in the Twitter LiveBlog plugin 1.1.2 and earlier for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the mashtlbtwitterusername parameter in the...

6.8CVSS6.4AI score0.01001EPSS
Exploits2References1
Prion
Prion
added 2014/12/31 9:59 p.m.15 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in the Twitter LiveBlog plugin 1.1.2 and earlier for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the mashtlbtwitterusername parameter in the...

6.8CVSS6.8AI score0.01001EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2014/12/31 9:0 p.m.36 views

CVE-2014-9398

The CVE-2014-9398 entry concerns the WordPress Twitter LiveBlog plugin (versions 1.1.2 and earlier). The vulnerability is a CSRF flaw that allows an attacker to hijack an administrator’s authenticated session to perform actions that may enable XSS via the mashtlb_twitter_username parameter in twi...

6.8CVSS6.6AI score0.01001EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2014/12/31 9:0 p.m.23 views

CVE-2014-9398

Cross-site request forgery CSRF vulnerability in the Twitter LiveBlog plugin 1.1.2 and earlier for WordPress allows remote attackers to hijack the authentication of administrators for requests that conduct cross-site scripting XSS attacks via the mashtlbtwitterusername parameter in the...

6.4AI score0.01001EPSS
Exploits2References1
Packet Storm
Packet Storm
added 2014/12/18 12:0 a.m.45 views

WordPress Twitter LiveBlog 1.1.2 CSRF / XSS

Title: CSRF / Stored XSS Vulnerability in Twitter LiveBlog Wordpress Plugin Author: Manideep K CVE-ID: CVE-2014-9398 Plugin Homepage: https://wordpress.org/plugins/twitter-liveblog/ Version Affected: 1.1.2 probably lower versions Severity: High Description: Vulnerable Parameter:...

6.8CVSS0.01001EPSS
Exploits2
Rows per page
Query Builder