Twitter Cards Meta <= 2.4.5 - CSRF and XSS

Affects Plugin

Twitter Cards Meta – Ultimate Twitter Card Plugin for WordPress

fixed in version 2.5.0

References

CVE	2017-18503
CVE	2017-18504
URL	https://plugins.trac.wordpress.org/changeset/1630958

Classification

Type	CSRF
CWE	CWE-352

Miscellaneous

Views	3629
Verified	No
WPVDB ID	9454

Timeline

Publicly Published	2017-04-06 (over 3 years ago)
Added	2019-07-15 (almost 1 year ago)
Last Updated	2019-11-28 (8 months ago)

Our Other Services

Online WordPress Vulnerability Scanner

WPScan WordPress Security Plugin