CVE-2025-22325

Cross-Site Request Forgery CSRF vulnerability in nchankov Autocompleter autocompleter allows Stored XSS.This issue affects Autocompleter: from n/a through = 1.3.5.2...

CVE-2025-22325

CVE-2025-22325 describes a Cross-Site Request Forgery (CSRF) vulnerability in the Autocompleter plugin by Nik Chankov that permits a Stored XSS. Public records indicate the flaw affects Autocompleter versions from unknown up to 1.3.5.2. The root cause, as stated, is CSRF enabling Stored XSS, but ...

PT-2025-4440 · Unknown · Nik Chankov Autocompleter

Name of the Vulnerable Software and Affected Versions: Nik Chankov Autocompleter versions 1.3.5.2 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on ...

WordPress Plugin HUSKY - Products Filter for WooCommerce Professional Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

PT-2024-18313 · WordPress · Husky – Products Filter For Woocommerce Professional

Name of the Vulnerable Software and Affected Versions: HUSKY – Products Filter for WooCommerce Professional plugin for WordPress versions up to, and including, 1.3.5.2 Description: The issue allows authenticated attackers with contributor-level access and above to perform SQL Injection via the na...