2 matches found
CVE-2025-23715
CVE-2025-23715 is a CSRF-based vulnerability affecting RaymondDesign Post & Page Notes. The connected Red Hat entry confirms the issue and states that the CSRF allows Stored XSS in Post & Page Notes, affecting versions up to 0.1.1 (and n/a to 0.1.1 as described). Public references point to the Po...
CVE-2025-23715 WordPress Post & Page Notes plugin <= 0.1.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in RaymondDesign Post & Page Notes post-page-notes allows Stored XSS.This issue affects Post & Page Notes: from n/a through = 0.1.1...