3 matches found
EUVD-2025-3218
Malicious code in bioql PyPI...
CVE-2025-23508
Cross-Site Request Forgery CSRF vulnerability in OrigoThemes Extra Options – Favicons extra-options-favicons allows Stored XSS.This issue affects Extra Options – Favicons: from n/a through = 1.1.0...
CVE-2025-23508
CVE-2025-23508 affects the WordPress plugin Extra Options – Favicons (versions from unknown up to 1.1.0). The vulnerability is described as Cross-Site Request Forgery (CSRF) that enables Stored XSS. Connected Red Hat and related records confirm the CVE ID and the CSRF-to-Stored-XSS characterizati...