2 matches found
CVE-2025-23861 WordPress Debt Calculator plugin <= 1.0.1 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in Zack Katz Debt Calculator debt-calculator allows Cross Site Request Forgery.This issue affects Debt Calculator: from n/a through = 1.0.1...
CVE-2025-23861
CVE-2025-23861 is a CSRF vulnerability in Katz Web Services, Inc. Debt Calculator affecting Debt Calculator versions up to 1.0.1. Public details reference a CVSSv3.1 base score of 7.1 (High) with network attack vector, requiring user interaction. The Red Hat advisory confirms CSRF context. The in...