CVE-2025-23470
WordPress Visit Site Link enhanced plugin <= 1.0 - CSRF to Stored XSS vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Cross-Site Request Forgery (CSRF) vulnerability in xavsio4 Visit Site Link enhanced visit-site-link-enhanced allows Stored XSS.This issue affects Visit Site Link enhanced: from n/a through <= 1.0.
| CWE | CWE-352 |
| Vendor | xavsio4 |
| Product | visit site link enhanced |
| Published | Jan 16, 2025 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for xavsio4 visit site link enhanced
Be the first to know when new unknown vulnerabilities affecting xavsio4 visit site link enhanced are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
xavsio4 / Visit Site Link enhanced
0 โค 1.0
References
Credits
SOPROBRO | Patchstack Bug Bounty Program