Unrated severityNVD Advisory· Published Sep 20, 2021· Updated Aug 3, 2024
ThinkTwit < 1.7.1 - Authenticated Stored Cross-Site Scripting (XSS)
CVE-2021-24582
Description
The ThinkTwit WordPress plugin before 1.7.1 did not sanitise or escape its "Consumer key" setting before outputting it its settings page, leading to a Stored Cross-Site Scripting issue.
Affected products
1- Range: 1.7.1
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- wpscan.com/vulnerability/5a5293ed-ddcb-4a63-9420-09942e7d69c2mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.