← Back

Vikinghammer Tweet

vikinghammer_tweet

Vendor: Seanschulte • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-8043
1Seanschulte
1Vikinghammer Tweet
Jun 17, 2026
Sep 17, 2024
N/A· v4
5.4 MEDIUM· v3
N/A· v2
The Vikinghammer Tweet WordPress plugin through 0.2.4 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads...Show more
The Vikinghammer Tweet WordPress plugin through 0.2.4 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack.Show less