Global CyberSecurity

Insufficient Privilege Validation in NextScripts: Social Networks Auto-Poster

0

Published on 09/05/2020 – Last Updated on 09/05/2020 by OTC

NextScripts: Social Networks Auto-Poster is a plugin that  automatically publishes posts from your blog to your Social Media accounts such as Facebook, Twitter, Google+, Blogger, Tumblr, Flickr, LinkedIn, Instagram, Telegram, YouTube, WordPress, etc.

During a routine research audit for our Sucuri Firewall, we discovered a post deletion, arbitrary posting in social networks, and arbitrary plugin settings update affecting over 100,000 users of the WordPress plugin.

Disclosure / Response Timeline:

  • August 24, 2020: Initial contact attempt.

Continue reading Insufficient Privilege Validation in NextScripts: Social Networks Auto-Poster at Sucuri Blog.

ATMACA : Turkey’s first indigenous anti-ship missile

Previous article

iXblue delivers cyber-secure navigation system of the first Defense and Intervention Frigate (FDI)

Next article

You may also like

Comments

Comments are closed.