4 matches found
CVE-2025-23804
creationtimestamp| type| source ---|---|--- 2025-01-16 21:16:57+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lfv7caihlr2c...
CVE-2025-23804
Cross-Site Request Forgery CSRF vulnerability in Shiv Prakash Tiwari WP Service Payment Form With Authorize.net wp-service-payment-form-with-authorizenet allows Reflected XSS.This issue affects WP Service Payment Form With Authorize.net: from n/a through = 2.6.0...
CVE-2025-23804
CVE-2025-23804 is a CSRF vulnerability in the WordPress plugin WP Service Payment Form With Authorize.net that can enable a Reflected XSS . The Red Hat advisory reiterates the same CVE and describes the flaw as CSRF affecting the plugin up to version 2.6.0 . The base metrics list a CVSS v3.1 scor...
CVE-2025-23804 WordPress WP Service Payment Form With Authorize.net Plugin <= 2.6.0 - CSRF to Reflected Cross Site Scripting (XSS) vulnerability
Cross-Site Request Forgery CSRF vulnerability in Shiv Prakash Tiwari WP Service Payment Form With Authorize.net wp-service-payment-form-with-authorizenet allows Reflected XSS.This issue affects WP Service Payment Form With Authorize.net: from n/a through = 2.6.0...