Vulnerabilities > Smashballoon > Custom Twitter Feeds > 2.2

DATE	CVE	VULNERABILITY TITLE	RISK
2024-10-31	CVE-2024-49685	Cross-Site Request Forgery (CSRF) vulnerability in Smashballoon Custom Twitter Feeds Cross-Site Request Forgery (CSRF) vulnerability in Smash Balloon Custom Twitter Feeds (Tweets Widget) allows Cross Site Request Forgery.This issue affects Custom Twitter Feeds (Tweets Widget): from n/a through 2.2.3. network low complexity smashballoon CWE-352	8.8

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.