CVE-2024-54389 WordPress addWeather plugin <= 2.5.1 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Eduardo Chiaro addWeather allows Cross Site Request Forgery.This issue affects addWeather: from n/a through 2.5.1...

CVE-2024-54389

CVE-2024-54389 (addWeather) is documented as a Cross-Site Request Forgery to Stored Cross-Site Scripting issue affecting addWeather versions up to 2.5.1. The Red Hat/Wordfence records corroborate the CSRF-to-XSS chain and list the vulnerability as currently unpatched. Affected software: addWeathe...

WordPress addWeather plugin <= 2.5.1 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by Muhamad Agil Fachrian Patchstack Alliance in WordPress Plugin addWeather versions = 2.5.1...