CVE-2025-23673

Cross-Site Request Forgery CSRF vulnerability in dkukral Email on Publish email-on-publish allows Stored XSS.This issue affects Email on Publish: from n/a through = 1.5...

EUVD-2025-3332

Malicious code in bioql PyPI...

CVE-2025-23673

CVE-2025-23673: CSRF in Email on Publish (WordPress plugin) can trigger Stored XSS in versions from n/a through 1.5. Root cause is CSRF enabling XSS payload execution; CVSS 3.1 base 7.1. No additional remediation details provided in the documents.