Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2013-6342

Published: 22/11/2013 Updated: 25/11/2013
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Subscribe to Tweet-blender

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in the Tweet Blender plugin prior to 4.0.2 for WordPress allows remote malicious users to inject arbitrary web script or HTML via the tb_tab_index parameter to wp-admin/options-general.php.

Vulnerable Product Search on Vulmon Subscribe to Product

tweet-blender tweet-blender

tweet-blender tweet-blender 4.0.0

tweet-blender tweet-blender 3.3.15

tweet-blender tweet-blender 3.3.14

tweet-blender tweet-blender 3.3.0

tweet-blender tweet-blender 3.2.4

tweet-blender tweet-blender 3.2.3

tweet-blender tweet-blender 3.2.2

tweet-blender tweet-blender 3.1.8

tweet-blender tweet-blender 3.1.7

tweet-blender tweet-blender 3.1.6

tweet-blender tweet-blender 3.1.5

tweet-blender tweet-blender 3.1.4

tweet-blender tweet-blender 3.0.0

tweet-blender tweet-blender 2.4.7

tweet-blender tweet-blender 2.4.6

tweet-blender tweet-blender 2.4.5

tweet-blender tweet-blender 2.0.4

tweet-blender tweet-blender 2.0.3

tweet-blender tweet-blender 2.0.2

tweet-blender tweet-blender 2.0.1

tweet-blender tweet-blender 3.3.9

tweet-blender tweet-blender 3.3.8

tweet-blender tweet-blender 3.3.7

tweet-blender tweet-blender 3.3.6

tweet-blender tweet-blender 3.3.5

tweet-blender tweet-blender 3.1.16

tweet-blender tweet-blender 3.1.15

tweet-blender tweet-blender 3.1.14

tweet-blender tweet-blender 3.1.13

tweet-blender tweet-blender 3.0.8

tweet-blender tweet-blender 3.0.7

tweet-blender tweet-blender 3.0.6

tweet-blender tweet-blender 3.0.5

tweet-blender tweet-blender 2.3.0

tweet-blender tweet-blender 2.2.3

tweet-blender tweet-blender 2.2.2

tweet-blender tweet-blender 3.3.13

tweet-blender tweet-blender 3.3.11

tweet-blender tweet-blender 3.3.4

tweet-blender tweet-blender 3.3.2

tweet-blender tweet-blender 3.2.0

tweet-blender tweet-blender 3.1.17

tweet-blender tweet-blender 3.1.12

tweet-blender tweet-blender 3.1.10

tweet-blender tweet-blender 3.1.3

tweet-blender tweet-blender 3.1.1

tweet-blender tweet-blender 3.0.3

tweet-blender tweet-blender 3.0.1

tweet-blender tweet-blender 2.4.4

tweet-blender tweet-blender 2.4.2

tweet-blender tweet-blender 2.4.0

tweet-blender tweet-blender 2.2.0

tweet-blender tweet-blender 2.1.0

tweet-blender tweet-blender 3.3.12

tweet-blender tweet-blender 3.3.10

tweet-blender tweet-blender 3.3.3

tweet-blender tweet-blender 3.3.1

tweet-blender tweet-blender 3.2.1

tweet-blender tweet-blender 3.1.18

tweet-blender tweet-blender 3.1.11

tweet-blender tweet-blender 3.1.9

tweet-blender tweet-blender 3.1.2

tweet-blender tweet-blender 3.1.0

tweet-blender tweet-blender 3.0.4

tweet-blender tweet-blender 3.0.2

tweet-blender tweet-blender 2.4.3

tweet-blender tweet-blender 2.4.1

tweet-blender tweet-blender 2.1.1

tweet-blender tweet-blender 2.0.5

tweet-blender tweet-blender 2.0.0

tweet-blender tweet-blender 2.2.1

Exploits

Exploit DB: WordPress Tweet Blender 4.0.1 Cross Site Scripting
WordPress Tweet Blender plugin version 401 suffers from a cross site scripting vulnerability ...

References

CWE-79https://www.htbridge.com/advisory/HTB23180http://secunia.com/advisories/55780http://archives.neohapsis.com/archives/bugtraq/2013-11/0072.htmlhttp://wordpress.org/plugins/tweet-blender/changeloghttps://nvd.nist.govhttps://packetstormsecurity.com/files/124047/WordPress-Tweet-Blender-4.0.1-Cross-Site-Scripting.html
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserializationCVE-2024-4040cross-site scriptingCVE-2023-25790CVE-2024-2961XML external entityCVE-2024-26926CVE-2024-32806CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook