CVE-2024-38344

Published
View on NVD ↗
CVSS v3
5.4
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT

Description

A cross-site request forgery vulnerability exists in WP Tweet Walls versions prior to 1.0.4. If this vulnerability is exploited, an attacker allows a user who logs in to the WordPress site where the affected plugin is enabled to access a malicious page. As a result, the user may perform unintended operations on the WordPress site.

WP Tweet Walls
WP Tweet WallsUNAVAILABLE
<p>Easily create and add beautiful customized Tweets and Twitter walls to your site in a few simple steps.</p> <h4>Features</h4> <ul> <li>Create up to 3 tweet walls to add to your site with 3 tweets each</li> <li>Fully customizable and allows changing the theme and colors used</li> </ul> <h4>Premium Features</h4> <ul> <li>Create unlimited walls</li> <li>Create unlimited tweets</li> <li>View images, video and other media inside your tweets and tweet walls</li> <li>Create and add dynamic timelines to your site</li> <li>Create and add Twitter Tweet buttons, Follow buttons and Direct Message buttons</li> </ul>
WordPress Plugin DirectoryWordPress Plugin Directory
1.04K