Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:47 a.m.9 views

CVE-2025-23804

Cross-Site Request Forgery CSRF vulnerability in Shiv Prakash Tiwari WP Service Payment Form With Authorize.net wp-service-payment-form-with-authorizenet allows Reflected XSS.This issue affects WP Service Payment Form With Authorize.net: from n/a through = 2.6.0...

7.1CVSS7.2AI score0.00197EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-3436

Malicious code in bioql PyPI...

7.1CVSS8.7AI score0.00197EPSS
Exploits0References1
NVD
NVD
added 2025/01/16 9:15 p.m.5 views

CVE-2025-23804

Cross-Site Request Forgery CSRF vulnerability in Shiv Prakash Tiwari WP Service Payment Form With Authorize.net wp-service-payment-form-with-authorizenet allows Reflected XSS.This issue affects WP Service Payment Form With Authorize.net: from n/a through = 2.6.0...

7.1CVSS0.00197EPSS
Exploits0References1
CVE
CVE
added 2025/01/16 8:7 p.m.54 views

CVE-2025-23804

CVE-2025-23804 is a CSRF vulnerability in the WordPress plugin WP Service Payment Form With Authorize.net that can enable a Reflected XSS . The Red Hat advisory reiterates the same CVE and describes the flaw as CSRF affecting the plugin up to version 2.6.0 . The base metrics list a CVSS v3.1 scor...

7.1CVSS7.2AI score0.00197EPSS
Exploits0References1
CVE
CVE
added 2024/12/12 3:23 a.m.47 views

CVE-2024-12258

CVE-2024-12258 — The WordPress plugin WP Service Payment Form With Authorize.net is vulnerable to Reflected Cross-Site Scripting via the page parameter in all versions up to 2.6.3 due to insufficient input sanitization and output escaping. The issue permits unauthenticated attackers to inject mal...

6.1CVSS6AI score0.00424EPSS
Exploits0References2
Rows per page
Query Builder