| CVE-2024-3630 | HL Twitter <= 2014.1.18 - Admin+ Stored XSS via Widget | Unknown | HL Twitter | - | - | 2024-05-15 06:00:04 | Deep Dive |
| CVE-2024-3631 | HL Twitter <= 2014.1.18 - Unlink Twitter Account via CSRF | Unknown | HL Twitter | - | - | 2024-05-15 06:00:04 | Deep Dive |
| CVE-2024-30553 | WordPress WP Twitter Mega Fan Box Widget plugin <= 1.0 - Cross Site Scripting (XSS) vulnerability | Joby Joseph | WP Twitter Mega Fan Box Widget | Medium | 5.9 | 2024-03-31 19:52:08 | Deep Dive |
| CVE-2024-31101 | WordPress AI Twitter Feeds (Twitter widget & shortcode) plugin <= 2.4 - Cross Site Scripting (XSS) vulnerability | August Infotech | AI Twitter Feeds (Twitter widget & shortcode) | Medium | 6.5 | 2024-03-31 19:14:52 | Deep Dive |
| CVE-2024-1769 | JM Twitter Cards <= 14 - Information Exposure via Meta Description | jmlapam | JM Twitter Cards | Medium | 5.3 | 2024-03-05 01:56:03 | Deep Dive |
| CVE-2024-0379 | Custom Twitter Feeds – A Tweets Widget or X Feed Widget <= 2.2.1 - Cross-Site Request Forgery to Plugin Options Update | smub | Custom Twitter Feeds – A Tweets Widget or X Feed Widget | Medium | 4.3 | 2024-02-20 18:56:24 | Deep Dive |
| CVE-2023-52136 | WordPress Custom Twitter Feeds (Tweets Widget) Plugin <= 2.1.2 is vulnerable to Cross Site Request Forgery (CSRF) | Smash Balloon | Custom Twitter Feeds – A Tweets Widget or X Feed Widget | Medium | 4.3 | 2024-01-05 08:33:28 | Deep Dive |
| CVE-2023-34384 | WordPress Kebo Twitter Feed Plugin <= 1.5.12 is vulnerable to Cross Site Request Forgery (CSRF) | Kebo | Kebo Twitter Feed | Medium | 5.4 | 2023-11-13 00:58:12 | Deep Dive |
| CVE-2023-45628 | WordPress QR Twitter Widget Plugin <= 0.2.3 is vulnerable to Cross Site Scripting (XSS) | QROkes | QR Twitter Widget | Medium | 6.5 | 2023-10-18 13:28:45 | Deep Dive |
| CVE-2023-25042 | WordPress oAuth Twitter Feed for Developers Plugin <= 2.3.0 is vulnerable to Cross Site Scripting (XSS) | Liam Gladdy (Storm Consultancy) | oAuth Twitter Feed for Developers | Medium | 5.9 | 2023-09-01 10:48:28 | Deep Dive |
| CVE-2023-32577 | WordPress DevBuddy Twitter Feed Plugin <= 4.0.0 is vulnerable to Cross Site Scripting (XSS) | Eji Osigwe | DevBuddy Twitter Feed | Medium | 5.9 | 2023-08-25 08:46:18 | Deep Dive |
| CVE-2023-2982 | WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) <= 7.6.4 - Authentication Bypass | cyberlord92 | miniOrange Social Login and Register (Discord, Google, Twitter, LinkedIn) | Critical | 9.8 | 2023-06-29 01:56:56 | Deep Dive |
| CVE-2014-125103 | BestWebSoft Twitter Plugin twitter.php twttr_settings_page cross site scripting | BestWebSoft | Twitter Plugin | Low | 2.4 | 2023-05-31 03:00:03 | Deep Dive |
| CVE-2012-10015 | BestWebSoft Twitter Plugin Settings Page twitter.php twttr_settings_page cross-site request forgery | BestWebSoft | Twitter Plugin | Medium | 4.3 | 2023-05-30 23:31:03 | Deep Dive |
| CVE-2022-33974 | WordPress Custom Twitter Feeds (Tweets Widget) Plugin <= 1.8.4 is vulnerable to Cross Site Request Forgery (CSRF) | Smash Balloon | Custom Twitter Feeds (Tweets Widget) | Medium | 5.4 | 2023-05-29 00:10:22 | Deep Dive |
| CVE-2023-23706 | WordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) Plugin <= 7.5.14 is vulnerable to Cross Site Request Forgery (CSRF) | miniOrange | WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) | Medium | 4.3 | 2023-05-23 12:41:38 | Deep Dive |
| CVE-2023-24005 | WordPress Inline Tweet Sharer – Twitter Sharing Plugin Plugin <= 2.5.3 is vulnerable to Cross Site Scripting (XSS) | Winwar Media | Inline Tweet Sharer – Twitter Sharing Plugin | Medium | 5.9 | 2023-04-25 19:45:37 | Deep Dive |
| CVE-2023-23710 | WordPress WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) plugin <= 7.5.14 is vulnerable to Cross Site Scripting (XSS) | miniOrange | WordPress Social Login and Register (Discord, Google, Twitter, LinkedIn) | Medium | 5.9 | 2023-04-25 19:41:40 | Deep Dive |
| CVE-2015-10096 | Zarthus IRC Twitter Announcer Bot twitter_announcer.rb get_tweets command injection | Zarthus | IRC Twitter Announcer Bot | Medium | 5.0 | 2023-03-20 04:31:03 | Deep Dive |
| CVE-2018-25058 | Twitter-Post-Fetcher Link Target twitterFetcher.js reverse tabnabbing | - | Twitter-Post-Fetcher | Medium | 4.2 | 2022-12-29 07:56:14 | Deep Dive |