Lucene search
K

5 matches found

CNVD
CNVD
added 2025/03/14 12:0 a.m.7 views

WordPress Google News Editors Picks Feed Generator plugin cross-site request forgery vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

7.1CVSS6.8AI score0.00143EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/03/11 9:40 p.m.4 views

WordPress Google News Editors Picks Feed Generator plugin <= 2.1 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin Google News Editors Picks Feed Generator versions = 2.1...

7.1CVSS8.2AI score0.00143EPSS
Exploits0Affected Software1
CVE
CVE
added 2025/03/11 9:0 p.m.51 views

CVE-2025-28860

CVE-2025-28860 – Google News Editors Picks Feed Generator is a CSRF-to-Stored XSS vulnerability affecting the WordPress plugin Google News Editors Picks Feed Generator (versions up to 2.1). The issue arises from insufficient validation of requests, enabling a CSRF attacker to trigger stored XSS w...

7.1CVSS7.2AI score0.00143EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2025/03/11 9:0 p.m.16 views

CVE-2025-28860 WordPress Google News Editors Picks Feed Generator plugin <= 2.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in PPDPurveyor Google News Editors Picks Feed Generator google-news-editors-picks-news-feeds allows Stored XSS.This issue affects Google News Editors Picks Feed Generator: from n/a through = 2.1...

7.1CVSS0.00143EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/03/11 12:0 a.m.4 views

WordPress plugin Google News Editors Picks Feed Generator 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

7.1CVSS6.7AI score0.00143EPSS
Exploits0References3
Rows per page
Query Builder