4 matches found
CVE-2025-26569
Cross-Site Request Forgery CSRF vulnerability in Callmeforsox Post Thumbs allows Stored XSS. This issue affects Post Thumbs: from n/a through 1.5...
CVE-2025-26569
creationtimestamp| type| source ---|---|--- 2025-02-13 14:17:19+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li2uvnl2l42x 2025-02-13 14:41:01+00:00| seen| https://infosec.exchange/users/cve/statuses/113997097272742226 2025-02-13 15:12:00+00:00| seen|...
CVE-2025-26569 WordPress Post Thumbs Plugin <= 1.5 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Callmeforsox Post Thumbs allows Stored XSS. This issue affects Post Thumbs: from n/a through 1.5...
CVE-2025-26569
CVE-2025-26569 is a CSRF-to-Stored XSS vulnerability affecting the WordPress Post Thumbs plugin (versions n/a through 1.5). Public sources in connected docs consistently describe the flaw as CSRF that enables Stored XSS and indicate the affected plugin/versions. The Red Hat, NVD, CVE lists corrob...