EUVD-2025-7946

Malicious code in bioql PyPI...

CVE-2025-30577

CVE-2025-30577 describes a CSRF-to-Stored XSS vulnerability in the Browser Address Bar Color plugin. Affected software is Browser Address Bar Color (WordPress plugin) with versions 3.3 and earlier (listed as n/a through 3.3). The issue allows CSRF to trigger Stored XSS, but exploitation details a...