CVE-2025-52789 – Lewe ChordPress CSRF Stored XSS

June 20, 2025

CVE ID : CVE-2025-52789

Published : June 20, 2025, 3:15 p.m. | 2 hours, 9 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in George Lewe Lewe ChordPress allows Stored XSS. This issue affects Lewe ChordPress: from n/a through 3.9.7.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-52792 – Vgstef WP User Stylesheet Switcher CSRF Stored XSS

Next Article CVE-2025-52783 – WooCommerce Change Cart Button Colors CSRF Stored XSS

This week in AI dev tools: Gemini 2.5 Pro and Flash GA, GitHub Copilot Spaces, and more (June 20, 2025)

Gemini 2.5 Pro and Flash are generally available and Gemini 2.5 Flash-Lite preview is announced

CSS Cascade Layers Vs. BEM Vs. Utility Classes: Specificity Control

IBM launches new integration to help unify AI security and governance

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

Borderlands 4 is killing off a tired “FOMO” trend — I hope other developers follow suit

Dr. Axel’s JavaScript flashcards

Dr. Axel’s JavaScript flashcards

Syntax-Highlight – Custom Element For Syntax Highlighting Content

WelsonJS – Build a Windows app on the Windows built-in JavaScript engine

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

One of World of Warcraft’s deadliest entities makes a world-shattering return after nearly 20 years — and he’s city-sized

It feels like Blizzard has abandoned Diablo 2: Resurrected — but there’s one way to keep it alive for years to come

Steam’s performance tracking tool is becoming more like the Steam Deck’s — you can try it out right now

CVE-2025-52789 – Lewe ChordPress CSRF Stored XSS

Former Black Basta Members Use Microsoft Teams and Python Scripts in 2025 Attacks

ConnectWise to Rotate ScreenConnect Code Signing Certificates Due to Security Risks

CVE-2025-30172 – ASPECT Remote Code Execution Vulnerability

Community News: Latest PECL Releases (06.03.2025)

CVE-2025-4548 – Campcodes Online Food Ordering System SQL Injection

I tested a Pixel Tablet without any Google apps, and it’s more private than even my iPad

Cryptojacking Campaign Exploits DevOps APIs Using Off-the-Shelf Tools from GitHub

Malware Open Source nei Pacchetti Software: la Nuova Minaccia per le Distribuzioni GNU/Linux

AI Tools vs AI Agents: Differences & How To Use

Amazon’s Starlink challenger set for launch – here’s when you’ll be able to use it

CVE-2025-52789 – Lewe ChordPress CSRF Stored XSS

Related Posts