53 matches found
CVE-2017-18505
The CVE-2017-18505 relates to BestWebSoft’s Twitter button WordPress plugin (versions before 2.55). The issue is a Cross-Site Scripting (XSS) vulnerability arising from insufficient validation of client-side data in the web app, enabling an authenticated attacker to inject and execute JavaScript ...
CVE-2019-10313
Jenkins Twitter Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-10313
Jenkins Twitter Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
Design/Logic Flaw
Jenkins Twitter Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system...
CVE-2019-10313
Jenkins Twitter Plugin stores credentials unencrypted in its global configuration file on the Jenkins master/controller, exposing them to users with filesystem access. The CVE-2019-10313 entries describe a high-severity impact (CVE-3.1 base score 8.8) due to storage in plaintext, with exploitatio...
PT-2019-11715 · Jenkins · Jenkins Twitter Plugin +1
Name of the Vulnerable Software and Affected Versions: Jenkins Twitter Plugin affected versions not specified Description: The issue concerns the storage of credentials in the Jenkins Twitter Plugin. Specifically, it stores credentials unencrypted in its global configuration file on the Jenkins...
WordPress social-networks-auto-poster-facebook-twitter-g plugin cross-site scripting vulnerability
WordPress is a set of WordPress Software Foundation's blogging platform developed using the PHP language, which supports setting up personal blog sites on servers with PHP and MySQL.WordPress social-networks-auto-poster-facebook-twitter-g is a plugin. A cross-site scripting vulnerability exists i...
Xhanch my Twitter - CSRF in admin/setting.php
The Xhanch – My Twitter WordPress plugin was affected by a CSRF in admin/setting.php security vulnerability...
WordPress Twitter Plugin <= 1.0.2 - XSS
Because of this vulnerability, the attackers can inject arbitrary web script or HTML via the "base" parameter. Solution Update the plugin...
CVE-2013-3253
Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...
Cross site request forgery (csrf)
Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...
CVE-2013-3253
CVE-2013-3253 documents a Cross-Site Request Forgery (CSRF) in the WordPress plugin Xhanch – My Twitter, specifically in admin/setting.php. Affected plugin versions are prior to 2.7.7, enabling remote attackers to hijack the administrator’s authentication to perform actions that change unspecifie...
CVE-2013-3253
Cross-site request forgery CSRF vulnerability in admin/setting.php in the Xhanch - My Twitter plugin before 2.7.7 for WordPress allows remote attackers to hijack the authentication of administrators for requests that change unspecified settings...