2 matches found
CVE-2025-48353
CVE-2025-48353 : A CSRF to Stored XSS vulnerability exists in the dactum Clickbank WordPress Plugin (Niche Storefront). Affected component: Clickbank WordPress Plugin (Niche Storefront) versions up to and including 1.3.5. Root cause: CSRF enables stored XSS in the plugin; exploitation details are...
WordPress Nice PayPal Button Lite Plugin <= 1.3.5 is vulnerable to Cross Site Request Forgery (CSRF)
Software Nice PayPal Button Lite Type Plugin Vulnerable versions = 1.3.5 Fixed in N/A OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-22686 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 497c643d4eec Credits Mika Required...