4 matches found
CVE-2025-23569
Cross-Site Request Forgery CSRF vulnerability in Kelvin Ng Shortcode in Comment shortcode-in-comment allows Stored XSS.This issue affects Shortcode in Comment: from n/a through = 1.1.1...
EUVD-2025-3254
Malicious code in bioql PyPI...
CVE-2025-23569
Cross-Site Request Forgery CSRF vulnerability in Kelvin Ng Shortcode in Comment shortcode-in-comment allows Stored XSS.This issue affects Shortcode in Comment: from n/a through = 1.1.1...
CVE-2025-23569
CVE-2025-23569 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin “Shortcode in Comment” by Kelvin Ng, which allows Stored XSS. The vulnerability affects the Shortcode in Comment plugin version range up to 1.1.1 (inclusive). The hosted CVE details also cite a CVSS...