Skip to main content
Loading…
    CVE-2025-23720 — Cross-Site Request Forgery (CSRF) vulnerability in Marco Castelluccio Web Push web-push allows Stored XSS.This issue affects Web Push: from n/a through <= 1.4.0. — CVE Database · The Intelligence Room