Lucene search
+L

5 matches found

nvd
nvd
added 2025/04/17 4:15 p.m.6 views

CVE-2025-39433

Cross-Site Request Forgery CSRF vulnerability in bekero Bknewsticker bknewsticker allows Stored XSS.This issue affects Bknewsticker: from n/a through = 1.0.5...

7.1CVSS0.00139EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2025/04/17 3:16 p.m.4 views

CVE-2025-39433 WordPress Bknewsticker plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in bekero Bknewsticker bknewsticker allows Stored XSS.This issue affects Bknewsticker: from n/a through = 1.0.5...

7.1CVSS8.6AI score0.00139EPSS
Exploits0References1
cvelist
cvelist
added 2025/04/17 3:16 p.m.18 views

CVE-2025-39433 WordPress Bknewsticker plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in bekero Bknewsticker bknewsticker allows Stored XSS.This issue affects Bknewsticker: from n/a through = 1.0.5...

7.1CVSS0.00139EPSS
Exploits0References1
cve
cve
added 2025/04/17 3:16 p.m.45 views

CVE-2025-39433

CVE-2025-39433 : The WordPress plugin Bknewsticker (beKe_ro) suffers a CSRF vulnerability in versions up to and including 1.0.5 that enables a Stored XSS payload. The CVE details (and corroborating Red Hat/patch sources) indicate the impact includes compromised confidentiality, integrity, and ava...

7.1CVSS7.2AI score0.00139EPSS
Exploits0References1
patchstack
patchstack
added 2025/04/17 10:13 a.m.5 views

WordPress Bknewsticker plugin <= 1.0.5 - Cross Site Request Forgery (CSRF) vulnerability

Cross Site Request Forgery CSRF vulnerability discovered by johska Patchstack Alliance in WordPress Plugin Bknewsticker versions = 1.0.5...

7.1CVSS8.2AI score0.00139EPSS
Exploits0Affected Software1
Rows per page
Query Builder