3 matches found
CVE-2025-32610 WordPress Foliopress WYSIWYG plugin <= 2.6.18 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Foliovision: Making the web work for you Foliopress WYSIWYG allows Cross Site Request Forgery. This issue affects Foliopress WYSIWYG: from n/a through 2.6.18...
CVE-2025-32610
CVE-2025-32610 affects Foliopress WYSIWYG in FolioPress WYSIWYG (up to 2.6.18); described as CSRF leading to stored XSS. Public documentation shows a base CVSS v3.1 score of 7.1 (HIGH) with network attack vector, no privileges, and user interaction required. Connected sources indicate the patch s...
WordPress Foliopress WYSIWYG plugin <= 2.6.18 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin Foliopress WYSIWYG versions = 2.6.18...