3 matches found
EUVD-2025-27265
Malicious code in bioql PyPI...
CVE-2025-48104
Cross-Site Request Forgery CSRF vulnerability in ericzane Floating Window Music Player floating-window-music-player allows Stored XSS.This issue affects Floating Window Music Player: from n/a through = 3.4.2...
CVE-2025-48104
CVE-2025-48104 concerns the Floating Window Music Player WordPress plugin. Public documentation confirms a CSRF vulnerability that leads to Stored XSS in versions up to 3.4.2. Affected software: Floating Window Music Player (WordPress plugin). Root cause: Cross-Site Request Forgery enabling store...