5 matches found
CVE-2025-32669
Cross-Site Request Forgery CSRF vulnerability in MERGADO Mergado Pack mergado-marketing-pack allows Stored XSS.This issue affects Mergado Pack: from n/a through = 4.2.1...
CVE-2025-32669
CVE-2025-32669 describes a CSRF-to-Stored XSS in the WordPress plugin set “Mergado Pack.” The connected documents confirm the impact is stored XSS triggered via CSRF and that affected software is Mergado Pack up to version 4.1.1 . Technical details in the connected sources identify the vulnerabil...
CVE-2025-32669 WordPress Mergado Pack plugin <= 4.2.1 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in MERGADO Mergado Pack mergado-marketing-pack allows Stored XSS.This issue affects Mergado Pack: from n/a through = 4.2.1...
CVE-2025-32669 WordPress Mergado Pack plugin <= 4.2.1 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in MERGADO Mergado Pack mergado-marketing-pack allows Stored XSS.This issue affects Mergado Pack: from n/a through = 4.2.1...
WordPress Mergado Pack plugin <= 4.2.1 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by Nguyen Xuan Chien in WordPress Plugin Mergado Pack versions = 4.2.1...