Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 8:47 a.m.11 views

CVE-2025-23694

Cross-Site Request Forgery CSRF vulnerability in shabboscommerce Shabbos and Yom Tov shabbos-and-yom-tov allows Stored XSS.This issue affects Shabbos and Yom Tov: from n/a through = 1.9...

7.1CVSS7.2AI score0.00169EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/01/16 8:6 p.m.10 views

CVE-2025-23694 WordPress Shabbos and Yom Tov plugin <= 1.9 - CSRF to Stored XSS vulnerability

Cross-Site Request Forgery CSRF vulnerability in Shabbos Commerce Shabbos and Yom Tov allows Stored XSS.This issue affects Shabbos and Yom Tov: from n/a through 1.9...

7.1CVSS6.8AI score0.00169EPSS
Exploits0References1
CVE
CVE
added 2025/01/16 8:6 p.m.58 views

CVE-2025-23694

CVE-2025-23694 concerns a Cross-Site Request Forgery (CSRF) flaw in the Shabbos and Yom Tov WordPress plugin that enables Stored XSS. The Red Hat entry mirrors the description, rating the issue and noting affected software Shabbos and Yom Tov until version 1.9. No exploitation details are provide...

7.1CVSS7.2AI score0.00169EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/01/16 6:42 p.m.5 views

WordPress Shabbos and Yom Tov plugin <= 1.9 - CSRF to Stored XSS vulnerability

CSRF to Stored XSS vulnerability discovered by SOPROBRO in WordPress Plugin Shabbos and Yom Tov versions = 1.9...

7.1CVSS6.2AI score0.00169EPSS
Exploits0Affected Software1
Positive Technologies
Positive Technologies
added 2025/01/16 12:0 a.m.5 views

PT-2025-5029 · Unknown · Shabbos/Yom Tov

Name of the Vulnerable Software and Affected Versions: Shabbos and Yom Tov versions 1.9 and earlier Description: The issue is related to a Cross-Site Request Forgery CSRF vulnerability that allows Stored XSS. This means an attacker can trick a user into performing unintended actions on a web...

7.1CVSS9.1AI score0.00169EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/01/16 12:0 a.m.4 views

WordPress plugin Shabbos and Yom Tov 跨站请求伪造漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A cross-site request forgery...

7.1CVSS8.2AI score0.00169EPSS
Exploits0References1
Rows per page
Query Builder