CVE-2025-52790 – WP-DownloadCounter CSRF Stored XSS

June 20, 2025

CVE ID : CVE-2025-52790

Published : June 20, 2025, 3:15 p.m. | 2 hours, 9 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in r-win WP-DownloadCounter allows Stored XSS. This issue affects WP-DownloadCounter: from n/a through 1.01.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52791 – Devfelixmoira Knowledge Base Maker CSRF Stored XSS

Next Article CVE-2025-52793 – Esselink.nu CSRF and XSS

Highlights

CVE-2025-5156 – H3C GR-5400AX Buffer Overflow Vulnerability

May 25, 2025

CVE ID : CVE-2025-5156

Published : May 25, 2025, 10:15 p.m. | 2 hours, 54 minutes ago

Description : A vulnerability was found in H3C GR-5400AX up to 100R008 and classified as critical. Affected by this issue is the function EditWlanMacList of the file /routing/goform/aspForm. The manipulation of the argument param leads to buffer overflow. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

GNOME Replace Totem Video Player with Showtime

May 9, 2025

A Step-by-Step Implementation Tutorial for Building Modular AI Workflows Using Anthropic’s Claude Sonnet 3.7 through API and LangGraph

May 21, 2025

CVE-2025-45021 – PHPGurukul Directory Management System SQL Injection

April 30, 2025

The Power Of The Intl API: A Definitive Guide To Browser-Native Internationalization

This week in AI dev tools: GPT-5, Claude Opus 4.1, and more (August 8, 2025)

Elastic simplifies log analytics for SREs and developers with launch of Log Essentials

OpenAI launches GPT-5

5 ways business leaders can transform workplace culture – and it starts by listening

My 4 favorite image editing apps on Linux – and two are free Photoshop alternatives

How Google’s Genie 3 could change AI video – and let you build your own interactive worlds

How you’re charging your tablet is slowly killing it – 3 methods to avoid (and the right way)

Establishing Consistent Data Foundations with Laravel’s Database Population System

Establishing Consistent Data Foundations with Laravel’s Database Population System

Generate Postman Collections from Laravel Routes

This Week in Laravel: Free Laravel Idea, Laracon News, and More

Lenovo Legion Go 2 vs Legion Go — How Do These Gaming Handhelds Compare Based on Rumored Specs?

Lenovo Legion Go 2 vs Legion Go — How Do These Gaming Handhelds Compare Based on Rumored Specs?

9 Default Settings in Windows 11 You Didn’t Know Could Affect Performance and Privacy

DICE Responds to Battlefield 6 Community: Key Updates on Map Flow and Class Mechanics

CVE-2025-52790 – WP-DownloadCounter CSRF Stored XSS

Black Hat USA 2025: Does successful cybersecurity today increase cyber-risk tomorrow?

Black Hat USA 2025: Policy compliance and the myth of the silver bullet

GameStop’s $500 Million Bitcoin Investment: A Strategic Leap into the Future

Introducing New Navigation for MongoDB Atlas and Cloud Manager

CVE-2025-4475 – Here is a potential title for the vulnerability:“Apache Struts Remote Code Execution Vulnerability”

Black Myth: Wukong is coming to Xbox exactly one year after launching on PlayStation

CVE-2025-5156 – H3C GR-5400AX Buffer Overflow Vulnerability

GNOME Replace Totem Video Player with Showtime

A Step-by-Step Implementation Tutorial for Building Modular AI Workflows Using Anthropic’s Claude Sonnet 3.7 through API and LangGraph

CVE-2025-45021 – PHPGurukul Directory Management System SQL Injection

CVE-2025-52790 – WP-DownloadCounter CSRF Stored XSS

Related Posts