2 matches found
CVE-2011-4129
CVE-2011-4129 affects libsocialweb b4 0.25.20, specifically the Twitter integration in twitter-contact-view.c and twitter-item-view.c. The code automatically connects to Twitter when no Twitter account is configured, which could enable a remote attacker to obtain sensitive information via a man-i...
CVE-2012-4511
CVE-2012-4511 affects libsocialweb prior to 0.25.21, where the library creates an untrusted connection to Flickr when no Flickr account is configured. This behavior can enable a man‑in‑the‑middle (MITM) attacker to access sensitive information or alter data, as described in multiple advisories. F...