CVE-2025-62957

CVE-2025-62957 affects NikanWP WooCommerce Reporting wc-reports-lite (WordPress plugin) up to version 1.0.0. The issue is described as a Cross-Site Request Forgery (CSRF) vulnerability that can lead to Stored XSS. Public sources (NVD, Red Hat, CVE lists) assign a high severity (CVSS 3.1 base scor...