Skip to main content

Twitter

3 CVEs product

Monthly

CVE-2019-10313 Maven HIGH This Week

Jenkins Twitter Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Twitter
NVD
CVSS 3.1
8.8
EPSS
1.8%
CVE-2016-10511 MEDIUM POC This Month

The Twitter iOS client versions 6.62 and 6.62.1 fail to validate Twitter's server certificates for the /1.1/help/settings.json configuration endpoint, permitting man-in-the-middle attackers the. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Apple Information Disclosure Twitter
NVD
CVSS 3.0
5.9
EPSS
0.3%
CVE-2015-7229 LOW PATCH Monitor

The Twitter module 6.x-5.x before 6.x-5.2, 7.x-5.x before 7.x-5.9, and 7.x-6.x before 7.x-6.0 for Drupal does not properly check access permissions, which allows remote authenticated users to post. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

Privilege Escalation Twitter
NVD
CVSS 2.0
3.5
EPSS
0.2%
EPSS 2% CVSS 8.8
HIGH This Week

Jenkins Twitter Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Jenkins Information Disclosure Twitter
NVD
EPSS 0% CVSS 5.9
MEDIUM POC This Month

The Twitter iOS client versions 6.62 and 6.62.1 fail to validate Twitter's server certificates for the /1.1/help/settings.json configuration endpoint, permitting man-in-the-middle attackers the. Rated medium severity (CVSS 5.9), this vulnerability is remotely exploitable, no authentication required. Public exploit code available and no vendor patch available.

Apple Information Disclosure Twitter
NVD
EPSS 0% CVSS 3.5
LOW PATCH Monitor

The Twitter module 6.x-5.x before 6.x-5.2, 7.x-5.x before 7.x-5.9, and 7.x-6.x before 7.x-6.0 for Drupal does not properly check access permissions, which allows remote authenticated users to post. Rated low severity (CVSS 3.5), this vulnerability is remotely exploitable.

Privilege Escalation Twitter
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy