4 matches found
CVE-2025-26577
Cross-Site Request Forgery CSRF vulnerability in daxiawp DX-auto-publish dx-auto-publish allows Stored XSS.This issue affects DX-auto-publish: from n/a through = 1.2...
CVE-2025-26577
creationtimestamp| type| source ---|---|--- 2025-02-13 14:17:31+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3li2uvyx2yr2d 2025-02-13 14:56:03+00:00| seen| https://infosec.exchange/users/cve/statuses/113997156332156333 2025-02-13 15:10:16+00:00| seen|...
CVE-2025-26577 WordPress DX-auto-publish plugin <= 1.2 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in daxiawp DX-auto-publish dx-auto-publish allows Stored XSS.This issue affects DX-auto-publish: from n/a through = 1.2...
CVE-2025-26577
CVE-2025-26577 affects the WordPress plugin DX-auto-publish (versions up to and including 1.2). The issue is described as a Cross-Site Request Forgery (CSRF) that enables Stored XSS. Public details in connected documents identify the vulnerability class and affected software but do not provide an...