2 matches found
CVE-2023-0602
The Twittee Text Tweet WordPress plugin through 1.0.8 does not properly escape POST values which are printed back to the user inside one of the plugin's administrative page, which allows reflected XSS attacks targeting administrators to happen...
PT-2023-6376 · WordPress · Twittee Text Tweet Wordpress Plugin
Name of the Vulnerable Software and Affected Versions: Twittee Text Tweet WordPress plugin versions 1.0.0 through 1.0.8 Description: The issue arises from the plugin's failure to properly escape POST values, which are then printed back to the user inside one of the plugin's administrative pages...