CVE-2025-23803 WordPress Snippy Plugin <= 1.4.1 - CSRF to Cross Site Scripting (XSS) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Rik Schennink Snippy snippy allows Reflected XSS.This issue affects Snippy: from n/a through = 1.4.1...

CVE-2025-23803

CVE-2025-23803 — Cross-Site Request Forgery (CSRF) in PQINA Snippy leads to Reflected XSS. Affected: PQINA Snippy (WordPress plugin) with versions up to 1.4.1 (inclusive); documented as CSRF enabling reflected XSS. CVSS 3.1 score: 7.1 (HIGH). Connected Red Hat entry RH:CVE-2025-23803 reiterates t...

WordPress plugin Snippy 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. A cross-site request forge...

WordPress Snippy Plugin <= 1.4.1 - CSRF to Cross Site Scripting (XSS) vulnerability

CSRF to Cross Site Scripting XSS vulnerability discovered by 0xd4rk5id3 in WordPress Plugin Snippy versions = 1.4.1...