Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/03/11 7:38 a.m.25 views

CVE-2025-1382

The Contact Us By Lord Linus WordPress plugin through 2.6 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

6.1CVSS5.9AI score0.00165EPSS
Exploits1References1
Circl
Circl
added 2025/03/09 6:38 a.m.22 views

CVE-2025-1382

creationtimestamp| type| source ---|---|--- 2025-03-09 06:38:06+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/6956 2025-03-09 06:55:41+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ljwhfyn4k526 2025-03-09 09:35:11+00:00| seen|...

6.1CVSS8.7AI score0.00165EPSS
Exploits1References3
NVD
NVD
added 2025/03/09 6:15 a.m.36 views

CVE-2025-1382

The Contact Us By Lord Linus WordPress plugin through 2.6 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

6.1CVSS0.00165EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/03/09 6:0 a.m.41 views

CVE-2025-1382 Contact Us By Lord Linus <= 2.6 - Admin+ Stored XSS via CSRF

The Contact Us By Lord Linus WordPress plugin through 2.6 does not have CSRF check in some places, and is missing sanitisation as well as escaping, which could allow attackers to make logged in admin add Stored XSS payloads via a CSRF attack...

0.00165EPSS
Exploits1References1
CVE
CVE
added 2025/03/09 6:0 a.m.81 views

CVE-2025-1382

CVE-2025-1382 affects the WordPress plugin Contact Us By Lord Linus (

6.1CVSS6AI score0.00165EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder