CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-10015 – BestWebSoft Twitter Plugin Settings Page twitter.php twttr_settings_page cross-site request forgery
https://notcve.org/view.php?id=CVE-2012-10015
A vulnerability was found in BestWebSoft Twitter Plugin up to 2.14 on WordPress. It has been classified as problematic. Affected is the function twttr_settings_page of the file twitter.php of the component Settings Page. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. • https://github.com/wp-plugins/twitter-plugin/commit/a6d4659cbb2cbf18ccb0fb43549d5113d74e0146 https://vuldb.com/?ctiid.230154 https://vuldb.com/?id.230154 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-10017 – BestWebSoft Portfolio Plugin cross-site request forgery
https://notcve.org/view.php?id=CVE-2012-10017
A vulnerability was found in BestWebSoft Portfolio Plugin up to 2.04 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. • https://github.com/wp-plugins/portfolio/commit/68af950330c3202a706f0ae9bbb52ceaa17dda9d https://vuldb.com/?ctiid.248955 https://vuldb.com/?id.248955 • CWE-352: Cross-Site Request Forgery (CSRF) •