Google dork description: Dork to find sites likely running Social Network
Tabs plugin 1.7.1 for WordPress and likely affected by CVE-2018-20555 which
allows remote attackers to discover Twitter access_token,
access_token_secret, consumer_key, and consumer_secret values by reading
the dcwp_twitter.php source code. This leads to Twitter account takeover.
Google Search: inurl:"dcwp_twitter.php"
Submitted by: Alfie
Twitter: https://twitter.com/emenalf
Website: https://the-infosec.com
--
Regards,
Alfie.
the-infosec.com
