EUVD-2025-12020

Malicious code in bioql PyPI...

CVE-2025-46492

Cross-Site Request Forgery CSRF vulnerability in Pham Thanh Call Now PHT Blog call-now-coccoc-pht-blog allows Stored XSS.This issue affects Call Now PHT Blog: from n/a through = 2.4.1...

CVE-2025-46492

Cross-Site Request Forgery CSRF vulnerability in Pham Thanh Call Now PHT Blog call-now-coccoc-pht-blog allows Stored XSS.This issue affects Call Now PHT Blog: from n/a through = 2.4.1...

CVE-2025-46492 WordPress Call Now PHT Blog plugin <= 2.4.1 - CSRF to XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Pham Thanh Call Now PHT Blog allows Stored XSS. This issue affects Call Now PHT Blog: from n/a through 2.4.1...

CVE-2025-46492

CVE-2025-46492 describes a CSRF to Stored XSS in the WordPress plugin Call Now PHT Blog (versions n/a through 2.4.1). The vulnerability arises from CSRF enabling stored XSS; affected product is the Call Now PHT Blog plugin for WordPress. The CVE entry indicates the issue affects versions up to 2....

PT-2025-17801 · Unknown · Call Now Pht Blog

Name of the Vulnerable Software and Affected Versions: Call Now PHT Blog versions n/a through 2.4.1 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on the web application,...

WordPress plugin Call Now PHT Blog 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation, a blogging platform developed in PHP. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A cross-site request forgery vulnerability exists in WordPress plugin...