CVE-2025-23691

UNKNOWN 0.0

WordPress Send to Twitter plugin <= 1.7.2 - CSRF to Stored XSS vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Cross-Site Request Forgery (CSRF) vulnerability in Braulio Aquino Send to Twitter send-to-twitter allows Stored XSS.This issue affects Send to Twitter: from n/a through <= 1.7.2.

CWE	CWE-352
Vendor	braulio aquino
Product	send to twitter
Published	Jan 16, 2025
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for braulio aquino send to twitter

Be the first to know when new unknown vulnerabilities affecting braulio aquino send to twitter are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Braulio Aquino / Send to Twitter

0 ≤ 1.7.2

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/send-to-twitter/vulnerability/wordpress-send-to-twitter-plugin-1-7-2-csrf-to-stored-xss-vulnerability?_s_id=cve

Credits

SOPROBRO | Patchstack Bug Bounty Program