Lucene search
K

53 matches found

CVE
CVE
added 2019/08/12 3:35 p.m.74 views

CVE-2017-18505

The CVE-2017-18505 relates to BestWebSoft’s Twitter button WordPress plugin (versions before 2.55). The issue is a Cross-Site Scripting (XSS) vulnerability arising from insufficient validation of client-side data in the web app, enabling an authenticated attacker to inject and execute JavaScript ...

6.1CVSS6.3AI score0.01652EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2019/04/30 1:29 p.m.19 views

CVE-2019-10313

Jenkins Twitter Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

8.8CVSS8.7AI score0.01832EPSS
Exploits0References3
OSV
OSV
added 2019/04/30 1:29 p.m.8 views

CVE-2019-10313

Jenkins Twitter Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

8.8CVSS6.7AI score
Exploits0References3
Prion
Prion
added 2019/04/30 1:29 p.m.13 views

Design/Logic Flaw

Jenkins Twitter Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...

4CVSS8.6AI score0.01832EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2019/04/30 12:25 p.m.41 views

CVE-2019-10313

Jenkins Twitter Plugin stores credentials unencrypted in its global configuration file on the Jenkins master/controller, exposing them to users with filesystem access. The CVE-2019-10313 entries describe a high-severity impact (CVE-3.1 base score 8.8) due to storage in plaintext, with exploitatio...

8.8CVSS8.6AI score0.01832EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2019/04/30 12:0 a.m.8 views

PT-2019-11715 · Jenkins · Jenkins Twitter Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Twitter Plugin affected versions not specified Description: The issue concerns the storage of credentials in the Jenkins Twitter Plugin. Specifically, it stores credentials unencrypted in its global configuration file on the Jenkins...

8.8CVSS8.5AI score0.01832EPSS
Exploits0References7
CNVD
CNVD
added 2019/03/25 12:0 a.m.4 views

WordPress social-networks-auto-poster-facebook-twitter-g plugin cross-site scripting vulnerability

WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports setting up personal blog sites on servers with PHP and MySQL.WordPress social-networks-auto-poster-facebook-twitter-g is a plugin. A cross-site scripting vulnerability exists i...

6.1CVSS6.3AI score0.01253EPSS
Exploits1References1
WPVulnDB
WPVulnDB
added 2014/08/01 10:59 a.m.16 views

Xhanch my Twitter - CSRF in admin/setting.php

The Xhanch – My Twitter WordPress plugin was affected by a CSRF in admin/setting.php security vulnerability...

6.8CVSS2.3AI score0.012EPSS
Exploits2Affected Software1
Patchstack
Patchstack
added 2014/06/23 12:0 a.m.14 views

WordPress Twitter Plugin <= 1.0.2 - XSS

Because of this vulnerability, the attackers can inject arbitrary web script or HTML via the "base" parameter. Solution Update the plugin...

4.3CVSS2.8AI score0.01629EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2013/08/09 8:56 p.m.20 views

CVE-2013-3253

Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...

6.8CVSS7.2AI score0.012EPSS
Exploits2References4
Prion
Prion
added 2013/08/09 8:56 p.m.12 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...

6.8CVSS7.7AI score0.012EPSS
Exploits2References4Affected Software1
CVE
CVE
added 2013/08/09 6:0 p.m.41 views

CVE-2013-3253

CVE-2013-3253 documents a Cross-Site Request Forgery (CSRF) in the WordPress plugin Xhanch – My Twitter, specifically in admin/setting.php. Affected plugin versions are prior to 2.7.7, enabling remote attackers to hijack the administrator’s authentication to perform actions that change unspecifie...

6.8CVSS7.4AI score0.012EPSS
Exploits2References4Affected Software1
Cvelist
Cvelist
added 2013/08/09 6:0 p.m.23 views

CVE-2013-3253

Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...

7.2AI score0.012EPSS
Exploits2References4
Rows per page
Query Builder