CVE-2025-23510

UNKNOWN 0.0

WordPress WordPress Logging Service plugin <= 1.5.4 - CSRF to Stored Cross Site Scripting (XSS) vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Cross-Site Request Forgery (CSRF) vulnerability in Jan Štětina WordPress Logging Service wordpress-logging-service allows Stored XSS.This issue affects WordPress Logging Service: from n/a through <= 1.5.4.

CWE	CWE-352
Vendor	jan štětina
Product	wordpress logging service
Published	Jan 16, 2025
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for jan štětina wordpress logging service

Be the first to know when new unknown vulnerabilities affecting jan štětina wordpress logging service are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Jan Štětina / WordPress Logging Service

0 ≤ 1.5.4

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/wordpress-logging-service/vulnerability/wordpress-wordpress-logging-service-plugin-1-5-4-csrf-to-stored-cross-site-scripting-xss-vulnerability?_s_id=cve

Credits

SOPROBRO | Patchstack Bug Bounty Program