WordPress WP Panoramio plugin <= 1.5.0 - CSRF to Cross-Site Scripting vulnerability

CSRF to Cross-Site Scripting vulnerability discovered by SOPROBRO in WordPress Plugin WP Panoramio versions = 1.5.0...

PT-2025-5005 · WordPress · Wp Panoramio

Name of the Vulnerable Software and Affected Versions: WP Panoramio versions 1.5.0 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF problem that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web application,...