3 matches found
CVE-2025-26549
Cross-Site Request Forgery CSRF vulnerability in pa1 WP Html Page Sitemap wp-html-page-sitemap allows Stored XSS.This issue affects WP Html Page Sitemap: from n/a through = 2.2...
CVE-2025-26549
creationtimestamp| type| source ---|---|--- 2025-02-13 14:10:59+00:00| seen| https://infosec.exchange/users/cve/statuses/113996979167159469 2025-02-13 14:16:56+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li2uuxagqx2g 2025-02-13 15:12:47+00:00| seen|...
CVE-2025-26549
CVE-2025-26549 is a CSRF to Stored XSS vulnerability in the WordPress plugin WP Html Page Sitemap affecting versions up to and including 2.2. The issue arises from CSRF that could store XSS payloads, with a CVSS v3.1 base score of 7.1 (HIGH) . Current connected sources indicate the vulnerability ...