2 matches found
CVE-2025-58856
Summary (CVE-2025-58856) Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin “Woocommerce Notify Updated Product” (ablancodev) allows Stored XSS. Affected versions are up to and including 1.6. Multiple sources (NVD, CVE lists, PatchStack, PT-2025-36195) confirm CSRF with store...
WordPress Woocommerce Notify Updated Product Plugin <= 1.6 - Cross Site Request Forgery (CSRF) Vulnerability
Cross Site Request Forgery CSRF Vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Woocommerce Notify Updated Product versions = 1.6...