mirror of
https://github.com/0xMarcio/cve.git
synced 2025-05-28 01:04:30 +00:00
916 B
916 B
CVE-2018-20555
Description
The Design Chemical Social Network Tabs plugin 1.7.1 for WordPress allows remote attackers to discover Twitter access_token, access_token_secret, consumer_key, and consumer_secret values by reading the dcwp_twitter.php source code. This leads to Twitter account takeover.
POC
Reference
- https://github.com/fs0c131y/CVE-2018-20555
- https://github.com/fs0c131y/CVE-2018-20555
- https://wpvulndb.com/vulnerabilities/9204
- https://wpvulndb.com/vulnerabilities/9204