Dachande663 Hl_twitter
3 CVEs affecting Dachande663 Hl_twitter. Latest disclosed: 2024-05-15. Critical: 0, High: 0.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-3630 | Medium | 5.4 | 2024-05-15 | The HL Twitter WordPress plugin through 2014.1.18 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to pe… |
CVE-2024-3631 | Medium | 4.3 | 2024-05-15 | The HL Twitter WordPress plugin through 2014.1.18 does not have CSRF check when unlinking twitter accounts, which could allow attackers to make logged in admin… |
CVE-2024-3629 | Low | 2.4 | 2024-05-15 | The HL Twitter WordPress plugin through 2014.1.18 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in… |