CVE-2025-23806 | Teknoloji dünyasından en güncel haberleri ve güvenlikle ilgili gelişmeleri takip edin.

Cross-Site Request Forgery (CSRF) vulnerability in ThemeFarmer Ultimate Subscribe ultimate-subscribe allows Reflected XSS.This issue affects Ultimate Subscribe:…
Unknown CVSS: -

CVE-2025-23806

Cross-Site Request Forgery (CSRF) vulnerability in ThemeFarmer Ultimate Subscribe ultimate-subscribe allows Reflected XSS.This issue affects Ultimate Subscribe: from n/a through <= 1.3.
Vendor
-
Product
-
CWE
CWE-352
Yayın Tarihi
2025-01-22 15:15:24
Güncelleme
2026-04-15 00:35:42
Source Identifier
audit@patchstack.com
KEV Date Added
-

Kategoriler

CWE-352 2025

Referanslar

https://patchstack.com/database/Wordpress/Plugin/ultimate-subscribe/vulnerability/wordpress-ultimate-subscribe-plugin-1-3-csrf-to-reflected-cross-site-scripting-xss-vulnerability?_s_id=cve