5 matches found
CVE-2025-23980
Cross-Site Request Forgery CSRF vulnerability in James Andrews Full Circle full-circle allows Stored XSS.This issue affects Full Circle: from n/a through = 0.5.7.8...
CVE-2025-23980
creationtimestamp| type| source ---|---|--- 2025-01-31 09:16:35+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgznzwe5hl2c 2025-01-31 10:15:57+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3642...
CVE-2025-23980 WordPress Full Circle plugin <= 0.5.7.8 - CSRF to Stored Cross Site Scripting (XSS) vulnerability
Cross-Site Request Forgery CSRF vulnerability in James Andrews Full Circle full-circle allows Stored XSS.This issue affects Full Circle: from n/a through = 0.5.7.8...
CVE-2025-23980
CVE-2025-23980 concerns the WordPress plugin Full Circle (versions up to 0.5.7.8). The connected sources describe a CSRF vulnerability that enables Stored XSS. The CVSS v3.1 base score is 7.1 (High) with Network attack vector, Low confidentiality/integrity/availability impacts, and user interacti...
CVE-2025-23980 WordPress Full Circle plugin <= 0.5.7.8 - CSRF to Stored Cross Site Scripting (XSS) vulnerability
Cross-Site Request Forgery CSRF vulnerability in James Andrews Full Circle full-circle allows Stored XSS.This issue affects Full Circle: from n/a through = 0.5.7.8...