← Zuruck zu CVEs
CVE-2013-5726
N/ABeschreibung
Tweetbot 1.3.3 for Mac, and 2.8.5 for iPad and iPhone, does not require confirmation of (1) follow or (2) favorite actions, which allows remote attackers to automatically force the user to perform undesired actions, as demonstrated via the tweetbot:///follow/ URL.
CVE Details
CVSS v3.1 BewertungN/A
Veroffentlicht11/12/2013
Zuletzt geandert4/29/2026
Quellenvd
Honeypot-Sichtungen0
Betroffene Produkte
tapbots:tweetbot
Schwachen (CWE)
CWE-352
Referenzen
http://blog.binaryfactory.ca/2013/11/cve-2013-5726-tweetbot-for-ios-and-mac-user-disclosureprivacy-issue/(cve@mitre.org)
http://osvdb.org/99256(cve@mitre.org)
http://seclists.org/fulldisclosure/2013/Nov/9(cve@mitre.org)
http://blog.binaryfactory.ca/2013/11/cve-2013-5726-tweetbot-for-ios-and-mac-user-disclosureprivacy-issue/(af854a3a-2127-422b-91ae-364da2661108)
http://osvdb.org/99256(af854a3a-2127-422b-91ae-364da2661108)
http://seclists.org/fulldisclosure/2013/Nov/9(af854a3a-2127-422b-91ae-364da2661108)
IOC Korrelationen
Keine Korrelationen erfasst
This product uses data from the NVD API but is not endorsed or certified by the NVD.