Unrated severityNVD Advisory· Published Jul 31, 2023· Updated Aug 2, 2024

Twittee Text Tweet <= 1.0.8 - Reflected XSS

CVE-2023-0602

Description

The Twittee Text Tweet WordPress plugin through 1.0.8 does not properly escape POST values which are printed back to the user inside one of the plugin's administrative page, which allows reflected XSS attacks targeting administrators to happen.

Affected products

Themesgrove/Twittee Text Tweetv5
Range: 0

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

wpscan.com/vulnerability/c357f93d-4f21-4cd9-9378-d97756c75255mitreexploitvdb-entrytechnical-description

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.006
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000