Vulnerabilities and security researches forautoshare-for-twitter autoshare-for-twitter

Jun 06, 2024

CVE, Research URL: CVE-2022-38900
Home page URL: Security reports for Autopost for X (formerly Autoshare for Twitter)
Application: Autopost for X (formerly Autoshare for Twitter)
Date: Nov 28, 2022
Research Description: decode-uri-component 0.2.0 is vulnerable to Improper Input Validation resulting in DoS.
Affected versions: max 1.3.0.
Status: vulnerable

CVE, Research URL: CVE-2022-25912
Home page URL: Security reports for Autopost for X (formerly Autoshare for Twitter)
Application: Autopost for X (formerly Autoshare for Twitter)
Date: Dec 06, 2022
Research Description: The package simple-git before 3.15.0 are vulnerable to Remote Code Execution (RCE) when enabling the ext transport protocol, which makes it exploitable via clone() method. This vulnerability exists due to an incomplete fix of [CVE-2022-24066](https://security.snyk.io/vuln/SNYK-JS-SIMPLEGIT-2434306).
Affected versions: max 1.3.0.
Status: vulnerable

CVE, Research URL: CVE-2022-25858
Home page URL: Security reports for Autopost for X (formerly Autoshare for Twitter)
Application: Autopost for X (formerly Autoshare for Twitter)
Date: Jul 16, 2022
Research Description: The package terser before 4.8.1, from 5.0.0 and before 5.14.2 are vulnerable to Regular Expression Denial of Service (ReDoS) due to insecure usage of regular expressions.
Affected versions: max 1.2.0.
Status: vulnerable

Feb 27, 2026

CVE, Research URL: CVE-2026-25311
Home page URL: Security reports for Autopost for X (formerly Autoshare for Twitter)
Application: Autopost for X (formerly Autoshare for Twitter)
Date: Feb 19, 2026
Research Description: Missing Authorization vulnerability in 10up Autoshare for Twitter autoshare-for-twitter allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Autoshare for Twitter: from n/a through <= 2.3.1.
Affected versions: max 2.3.1.
Status: vulnerable