EUVD-2025-4061

Malicious code in bioql PyPI...

CVE-2025-25152

Cross-Site Request Forgery CSRF vulnerability in LukaszWiecek Smart DoFollow smart-dofollow allows Stored XSS.This issue affects Smart DoFollow: from n/a through = 1.0.2...

CVE-2025-25152

Cross-Site Request Forgery CSRF vulnerability in LukaszWiecek Smart DoFollow smart-dofollow allows Stored XSS.This issue affects Smart DoFollow: from n/a through = 1.0.2...

CVE-2025-25152 WordPress Smart DoFollow plugin <= 1.0.2 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in LukaszWiecek Smart DoFollow smart-dofollow allows Stored XSS.This issue affects Smart DoFollow: from n/a through = 1.0.2...

CVE-2025-25152

CVE-2025-25152 describes a CSRF to Stored XSS vulnerability in WordPress plugin Smart DoFollow (affected versions from n/a through 1.0.2). Base CVSS v3.1 score 7.1 ( HIGH ) with network attack vector, user interaction required. Root cause is CSRF enabling stored XSS. Connected documents indicate ...

WordPress plugin Smart DoFollow 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forger...

PT-2025-5960 · Lukaszwiecek · Smart Dofollow

Name of the Vulnerable Software and Affected Versions: LukaszWiecek Smart DoFollow versions 1.0.2 and earlier Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web...