5 matches found
CVE-2025-32612
Cross-Site Request Forgery CSRF vulnerability in rafasashi User Session Synchronizer user-session-synchronizer allows Stored XSS.This issue affects User Session Synchronizer: from n/a through = 1.4.0...
CVE-2025-32612
CVE-2025-32612 concerns the WordPress plugin User Session Synchronizer. Connected documentation confirms a CSRF to Stored XSS scenario affecting User Session Synchronizer versions up to 1.4.0, with the CVE rated as HIGH (CVSS 3.1: 7.1 base score: AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L). The Wordfenc...
CVE-2025-32612 WordPress User Session Synchronizer plugin <= 1.4.0 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in rafasashi User Session Synchronizer user-session-synchronizer allows Stored XSS.This issue affects User Session Synchronizer: from n/a through = 1.4.0...
CVE-2025-32612 WordPress User Session Synchronizer plugin <= 1.4.0 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in rafasashi User Session Synchronizer user-session-synchronizer allows Stored XSS.This issue affects User Session Synchronizer: from n/a through = 1.4.0...
WordPress User Session Synchronizer plugin <= 1.4.0 - CSRF to Stored XSS vulnerability
CSRF to Stored XSS vulnerability discovered by Abdi Pranata in WordPress Plugin User Session Synchronizer versions = 1.4.0...