6 matches found
EUVD-2025-26056
Malicious code in bioql PyPI...
CVE-2025-48109
Cross-Site Request Forgery CSRF vulnerability in Xavier Media XM-Backup xm-backup allows Stored XSS.This issue affects XM-Backup: from n/a through = 0.9.1...
CVE-2025-48109
Cross-Site Request Forgery CSRF vulnerability in Xavier Media XM-Backup xm-backup allows Stored XSS.This issue affects XM-Backup: from n/a through = 0.9.1...
CVE-2025-48109
CVE-2025-48109 is a CSRF to Stored XSS vulnerability in the WordPress plugin XM-Backup, affecting versions up to and including 0.9.1. The vulnerability allows an attacker to coerce a logged-in user to perform actions that trigger a stored XSS payload, per the CVE description and Patchstack/PT-202...
CVE-2025-48109 WordPress XM-Backup plugin <= 0.9.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Xavier Media XM-Backup allows Stored XSS. This issue affects XM-Backup: from n/a through 0.9.1...
PT-2025-34991
Name of the Vulnerable Software and Affected Versions: Xavier Media XM-Backup versions through 0.9.1 Description: A Cross-Site Request Forgery CSRF vulnerability exists in Xavier Media XM-Backup, which also allows Stored Cross-Site Scripting XSS. Recommendations: Update Xavier Media XM-Backup to ...