Unrated severityNVD Advisory· Published Aug 24, 2011· Updated Apr 29, 2026

CVE-2010-4825

Description

Cross-site scripting (XSS) vulnerability in magpie_debug.php in the Twitter Feed plugin (wp-twitter-feed) 0.3.1 for WordPress allows remote attackers to inject arbitrary web script or HTML via the url parameter.

Affected products

Pleer/Wp Twitter Feed
cpe:2.3:a:pleer:wp-twitter-feed:0.3.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.johnleitch.net/Vulnerabilities/WordPress.Twitter.Feed.0.3.1.Reflected.Cross-site.Scripting/68nvdExploit
www.osvdb.org/69760nvdExploit
www.securityfocus.com/bid/45294nvdExploit
secunia.com/advisories/42542nvdVendor Advisory
exchange.xforce.ibmcloud.com/vulnerabilities/63942nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000