CVE-2025-52792 – Vgstef WP User Stylesheet Switcher CSRF Stored XSS

June 20, 2025

CVE ID : CVE-2025-52792

Published : June 20, 2025, 3:15 p.m. | 2 hours, 9 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in vgstef WP User Stylesheet Switcher allows Stored XSS. This issue affects WP User Stylesheet Switcher: from n/a through v2.2.0.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52794 – Creative-Solutions Creative Contact Form CSRF Stored XSS

Next Article CVE-2025-52789 – Lewe ChordPress CSRF Stored XSS

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

Borderlands 4 is killing off a tired “FOMO” trend — I hope other developers follow suit

Dr. Axel’s JavaScript flashcards

Dr. Axel’s JavaScript flashcards

Syntax-Highlight – Custom Element For Syntax Highlighting Content

WelsonJS – Build a Windows app on the Windows built-in JavaScript engine

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

CVE-2025-52792 – Vgstef WP User Stylesheet Switcher CSRF Stored XSS

CVE-2025-49763: Apache Traffic Server Vulnerability Enables Memory Exhaustion Attacks

CVE-2025-5034 – WordPress wp-file-download Reflected Cross-Site Scripting

CVE-2025-31947 – Mattermost LDAP Account Lock Bypass Vulnerability

Apple’s App Store shaken: Court ends ‘Apple tax’ on external purchases

Story-Based Social Posts: Designing Narratives for Swipeable Content

SonicWall OS Command Injection Vulnerability Exploited in the Wild

The latest X-Force Threat Index, Remembering a Past SHARE President, and more

How to start using the new Linux terminal on your Android device

zgenom – lightweight and fast plugin manager for Zsh

CVE-2025-2158 – WordPress Review Plugin Local File Inclusion Vulnerability

CVE-2025-52792 – Vgstef WP User Stylesheet Switcher CSRF Stored XSS

Related Posts