CVE-2025-23806

Cross-Site Request Forgery CSRF vulnerability in ThemeFarmer Ultimate Subscribe ultimate-subscribe allows Reflected XSS.This issue affects Ultimate Subscribe: from n/a through = 1.3...

EUVD-2025-3438

Malicious code in bioql PyPI...

CVE-2025-23806

Cross-Site Request Forgery CSRF vulnerability in ThemeFarmer Ultimate Subscribe ultimate-subscribe allows Reflected XSS.This issue affects Ultimate Subscribe: from n/a through = 1.3...

CVE-2025-23806

CVE-2025-23806 describes a CSRF vulnerability in ThemeFarmer Ultimate Subscribe (ultimate-subscribe) that enables Reflected XSS, affecting Ultimate Subscribe versions up to 1.3. The description and Red Hat entry confirm the cross-site request forgery context and XSS impact; no public exploit deta...

CVE-2025-23806 WordPress Ultimate Subscribe Plugin <=1.3 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in ThemeFarmer Ultimate Subscribe ultimate-subscribe allows Reflected XSS.This issue affects Ultimate Subscribe: from n/a through = 1.3...

WordPress plugin Ultimate Subscribe 跨站请求伪造漏洞

WordPress and the WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forgery...

WordPress Ultimate Subscribe Plugin <=1.3 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability

CSRF to Reflected Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Ultimate Subscribe versions = 1.3...