CVE-2025-48114
WordPress ShayanWeb Admin FontChanger plugin <= 1.9.1 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Cross-Site Request Forgery (CSRF) vulnerability in Shayan Farhang Pazhooh ShayanWeb Admin FontChanger shayanweb-admin-fontchanger allows Stored XSS.This issue affects ShayanWeb Admin FontChanger: from n/a through <= 1.9.1.
| CWE | CWE-352 |
| Vendor | shayan farhang pazhooh |
| Product | shayanweb admin fontchanger |
| Published | May 16, 2025 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for shayan farhang pazhooh shayanweb admin fontchanger
Be the first to know when new unknown vulnerabilities affecting shayan farhang pazhooh shayanweb admin fontchanger are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
Affected Versions
Shayan Farhang Pazhooh / ShayanWeb Admin FontChanger
0 โค 1.9.1
References
Credits
johska | Patchstack Bug Bounty Program