{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-14T20:41:23.114","vulnerabilities":[{"cve":{"id":"CVE-2025-24636","sourceIdentifier":"audit@patchstack.com","published":"2025-01-24T18:15:38.507","lastModified":"2026-04-01T17:17:57.527","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-Site Request Forgery (CSRF) vulnerability in Rick Laymance MachForm Shortcode machform-shortcode allows Stored XSS.This issue affects MachForm Shortcode: from n\/a through <= 1.4.1."},{"lang":"es","value":"La vulnerabilidad Cross-Site Request Forgery (CSRF) en Laymance Technologies LLC MachForm Shortcode permite XSS almacenado. Este problema afecta al código corto MachForm: desde n\/a hasta 1.4.1."}],"metrics":{},"weaknesses":[{"source":"audit@patchstack.com","type":"Secondary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https:\/\/patchstack.com\/database\/Wordpress\/Plugin\/machform-shortcode\/vulnerability\/wordpress-machform-shortcode-plugin-1-4-1-csrf-to-stored-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}}]}