4 matches found
WordPress Vasaio QR Code plugin <= 1.2.5 - CSRF to XSS vulnerability
CSRF to XSS vulnerability discovered by johska in WordPress Plugin Vasaio QR Code versions = 1.2.5...
CVE-2025-46504
Cross-Site Request Forgery CSRF vulnerability in Olar Marius Vasaio QR Code vasaio-qr-code allows Stored XSS.This issue affects Vasaio QR Code: from n/a through = 1.2.5...
CVE-2025-46504 WordPress Vasaio QR Code plugin <= 1.2.5 - CSRF to XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Olar Marius Vasaio QR Code vasaio-qr-code allows Stored XSS.This issue affects Vasaio QR Code: from n/a through = 1.2.5...
CVE-2025-46504
CVE-2025-46504 concerns the WordPress plugin Vasaio QR Code (versions up to 1.2.5). The vulnerability is a CSRF-to-stored XSS issue, as reported by Patchstack and reflected in multiple feeds. Affected component is the Vasaio QR Code plugin itself; root cause is CSRF enabling stored XSS payload ex...