4 matches found
CVE-2025-39423
Cross-Site Request Forgery CSRF vulnerability in Jenst Add to Header add-to-header allows Stored XSS.This issue affects Add to Header: from n/a through = 1.0...
CVE-2025-39423
Cross-Site Request Forgery CSRF vulnerability in Jenst Add to Header add-to-header allows Stored XSS.This issue affects Add to Header: from n/a through = 1.0...
CVE-2025-39423
CVE-2025-39423 describes a CSRF-to-Stored-XSS vulnerability in the WordPress plugin “Add to Header” (versions n/a through 1.0). Multiple sources (NVD, CVE list, Patchstack, CNNVD, PT Security) confirm the issue and its impact as stored XSS enabled via CSRF. Exploitation would require user interac...
WordPress Add to Header plugin <= 1.0 - CSRF to XSS vulnerability
CSRF to XSS vulnerability discovered by johska Patchstack Alliance in WordPress Plugin Add to Header versions = 1.0...