CVE-2013-6342

Опубликовано: 22 нояб. 2013

Источник: nvd

CVSS2: 4.3

EPSS Низкий

Описание

Cross-site scripting (XSS) vulnerability in the Tweet Blender plugin before 4.0.2 for WordPress allows remote attackers to inject arbitrary web script or HTML via the tb_tab_index parameter to wp-admin/options-general.php.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2013-11/0072.html
Exploit
http://secunia.com/advisories/55780
Vendor Advisory
http://wordpress.org/plugins/tweet-blender/changelog
Patch
https://www.htbridge.com/advisory/HTB23180
Exploit
http://archives.neohapsis.com/archives/bugtraq/2013-11/0072.html
Exploit
http://secunia.com/advisories/55780
Vendor Advisory
http://wordpress.org/plugins/tweet-blender/changelog
Patch
https://www.htbridge.com/advisory/HTB23180
Exploit

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:tweet-blender:tweet-blender:*:-:-:*:-:wordpress:*:*

Версия до 4.0.1 (включая)

cpe:2.3:a:tweet-blender:tweet-blender:2.0.0:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.0.1:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.0.2:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.0.3:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.0.4:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.0.5:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.1.0:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.1.1:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.2.0:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.2.1:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.2.2:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.2.3:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.3.0:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.4.0:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.4.1:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.4.2:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.4.3:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.4.4:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.4.5:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.4.6:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:2.4.7:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.0.0:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.0.1:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.0.2:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.0.3:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.0.4:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.0.5:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.0.6:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.0.7:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.0.8:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.0:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.1:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.2:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.3:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.4:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.5:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.6:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.7:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.8:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.9:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.10:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.11:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.12:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.13:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.14:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.15:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.16:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.17:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.1.18:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.2.0:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.2.1:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.2.2:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.2.3:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.2.4:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.0:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.1:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.2:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.3:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.4:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.5:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.6:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.7:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.8:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.9:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.10:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.11:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.12:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.13:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.14:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:3.3.15:-:-:*:-:wordpress:*:*

cpe:2.3:a:tweet-blender:tweet-blender:4.0.0:-:-:*:-:wordpress:*:*

EPSS

Процентиль: 57%

0.00347

Низкий

4.3 Medium

CVSS2

Дефекты

CWE-79

Связанные уязвимости

GHSA-hrjv-x673-qm34

github

больше 3 лет назад