- Likely to be vulnerable to CVE-2011-5243
Reason for the 'Potentially unsafe' result
The plugin contains or is likely to contain a vulnerability which could be exploited by an end user and which would compromise the site’s confidentiality, integrity or availability:
- The plugin uses version v0.2.0-beta2 of the TwitterOAuth library. In addition to it being a beta release, it was released in 2009, and there is a known vulnerability in TwitterOAuth discovered in 2011: CVE-2011-5243
- I could not find a proof-of-concept or list of affected versions for the CVE, but it seems likely that this version also includes the vulnerability
Read more about our failure criteria.
|Unsafe request processing|
We conduct these inspections for our own use, and publish them in the hope that they may be useful to others. We don't guarantee that these findings are correct.
Please read this site's terms of service before taking any action based on information published here.
- Tom Adams
- Last revised
- September 8, 2017
- Versions tested
- Plugin homepage
- Twitter Hashtag Feed Widget
- Other versions