← Back

Reneade

reneade

2 CVEs • 2 products

Products (2)

Click to collapse
Toggle
Postlists
postlists
1 CVE
Twitterposts
twitterposts
1 CVE

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2023-7297
1Reneade
1Twitterposts
Nov 13, 2025
May 15, 2025
N/A· v4
3.5 LOW· v3
N/A· v2
The TwitterPosts WordPress plugin through 1.0.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
CVE-2024-10815
1Reneade
1Postlists
May 14, 2025
Jan 9, 2025
N/A· v4
4.2 MEDIUM· v3
N/A· v2
The PostLists WordPress plugin through 2.0.2 does not escape the $_SERVER['REQUEST_URI'] parameter before outputting it back in an attribute, which could lead to Reflected Cross-Site Scripting in old web browsers