The O2Tweet plugin versions 0.0.4 and earlier for WordPress have multiple security vulnerabilities that can allow remote attackers to take control of an administrator’s account. This could be used to perform Cross-Site Scripting (XSS) attacks by manipulating the o2t_username or o2t_tags parameters when accessing the wp-admin/options-general.php page.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
