5 matches found
CVE-2025-39433
Cross-Site Request Forgery CSRF vulnerability in bekero Bknewsticker bknewsticker allows Stored XSS.This issue affects Bknewsticker: from n/a through = 1.0.5...
CVE-2025-39433 WordPress Bknewsticker plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in bekero Bknewsticker bknewsticker allows Stored XSS.This issue affects Bknewsticker: from n/a through = 1.0.5...
CVE-2025-39433 WordPress Bknewsticker plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in bekero Bknewsticker bknewsticker allows Stored XSS.This issue affects Bknewsticker: from n/a through = 1.0.5...
CVE-2025-39433
CVE-2025-39433 : The WordPress plugin Bknewsticker (beKe_ro) suffers a CSRF vulnerability in versions up to and including 1.0.5 that enables a Stored XSS payload. The CVE details (and corroborating Red Hat/patch sources) indicate the impact includes compromised confidentiality, integrity, and ava...
WordPress Bknewsticker plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) vulnerability
Cross Site Request Forgery CSRF vulnerability discovered by johska Patchstack Alliance in WordPress Plugin Bknewsticker versions = 1.0.5...