Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-30908

Cross-Site Request Forgery (CSRF) vulnerability in Shamalli Web Directory Free allows Stored XSS. This issue affects Web Directory Free: from n/a through 1.7.6.

Published

2025-04-03T14:15:34.330

Last Modified

2025-04-07T14:18:34.453

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 7.1 (HIGH)

Weaknesses

Type: Secondary
CWE-352

Affected Vendors & Products

References

https://patchstack.com/database/wordpress/plugin/web-directory-free/vulnerability/wordpress-web-directory-free-plugin-1-7-6-csrf-to-cross-site-scripting-xss-vulnerability?_s_id=cve ([email protected])