CVE-2025-31401
CVE-2025-31401: MMX – Make Me Christmas plugin contains a CSRF to Stored XSS vulnerability affecting versions up to 1.0.0. The CVE’s base metrics show CVSS 3.1 with a base score of 7.1 (HIGH); attacker vector is NETWORK, with LOW confidentiality/integrity/availability impacts and user interaction...