3 matches found
CVE-2025-28964
Cross-Site Request Forgery CSRF vulnerability in mangup Personal Favicon personal-favicon allows Stored XSS.This issue affects Personal Favicon: from n/a through = 2.0...
CVE-2025-28964
CVE-2025-28964 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin Personal Favicon , which enables a Stored XSS condition. Affected: Personal Favicon, potentially up to version 2.0 (no lower bound provided). The CVSS 3.1 metrics indicate a base score of 7.1 (High)...
CVE-2025-28964 WordPress Personal Favicon plugin <= 2.0 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in mangup Personal Favicon personal-favicon allows Stored XSS.This issue affects Personal Favicon: from n/a through = 2.0...