{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-15T09:16:57.093","vulnerabilities":[{"cve":{"id":"CVE-2025-23673","sourceIdentifier":"audit@patchstack.com","published":"2025-01-16T20:15:43.620","lastModified":"2026-04-01T16:23:41.740","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-Site Request Forgery (CSRF) vulnerability in dkukral Email on Publish email-on-publish allows Stored XSS.This issue affects Email on Publish: from n\/a through <= 1.5."},{"lang":"es","value":" La vulnerabilidad de Cross-Site Request Forgery (CSRF) en Don Kukral Email on Publish permite XSS almacenado. Este problema afecta a Email on Publish: desde n\/a hasta 1.5."}],"metrics":{},"weaknesses":[{"source":"audit@patchstack.com","type":"Secondary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https:\/\/patchstack.com\/database\/Wordpress\/Plugin\/email-on-publish\/vulnerability\/wordpress-email-on-publish-plugin-1-5-csrf-to-stored-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}}]}