VYPR

PHP Twitter Clone

by Fyffe

Source repositories

CVEs (3)

  • CVE-2018-25364HigMay 25, 2026
    risk 0.53cvss 8.2epss 0.00

    Twitter-Clone 1 contains a SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the name parameter. Attackers can submit crafted payloads to the search.php endpoint to extract database information…

  • CVE-2018-25362HigMay 25, 2026
    risk 0.53cvss 8.2epss 0.00

    Twitter-Clone 1 contains a SQL injection vulnerability in follow.php that allows attackers to manipulate database queries by injecting SQL code through the userid parameter. Attackers can submit union-based or time-based blind SQL injection payloads to extract sensitive database…

  • CVE-2018-25363MedMay 25, 2026
    risk 0.28cvss 4.3epss 0.00

    Twitter-Clone 1 contains a cross-site request forgery vulnerability that allows remote attackers to force victims to delete posts by crafting malicious HTML forms. Attackers can create hidden forms targeting tweetdel.php with tweet IDs and automatically submit them to delete…