Sitetweet Project

sitetweet_project

1 CVE • 1 product

Products (1)

Click to collapse

Toggle

Sitetweet

sitetweet

1 CVE

CVEs (1)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-5767 1Sitetweet Project 1Sitetweet Jun 17, 2026 Jul 2, 2024 N/A· v4 8.8 HIGH· v3 N/A· v2 The sitetweet WordPress plugin through 0.2 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF...Show more The sitetweet WordPress plugin through 0.2 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attackShow less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2024-5767

1Sitetweet Project

1Sitetweet

Jun 17, 2026

Jul 2, 2024

N/A· v4

8.8 HIGH· v3

N/A· v2

The sitetweet WordPress plugin through 0.2 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF...Show more