CVE-2024-51716

Name of the Vulnerable Software and Affected Versions Gopi.R Twitter Plugin versions prior to 7.0

Description The issue is related to Improper Neutralization of Input During Web Page Generation, also known as Cross-site Scripting (XSS). This allows for Reflected XSS in the Twitter real-time search scrolling feature. The impact of this issue includes potential site defacement and user session hijacking.

Recommendations For versions prior to 7.0, update the Gopi.R Twitter Plugin to the latest patched version immediately. As a temporary workaround, consider restricting access to the Twitter real-time search scrolling feature until the update is applied.