{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-14T20:38:25.318","vulnerabilities":[{"cve":{"id":"CVE-2025-25139","sourceIdentifier":"audit@patchstack.com","published":"2025-02-07T10:15:18.837","lastModified":"2026-04-01T17:18:27.570","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-Site Request Forgery (CSRF) vulnerability in Cynob IT Consultancy WP Custom Post RSS Feed wp-custom-post-rss-feed allows Stored XSS.This issue affects WP Custom Post RSS Feed: from n\/a through <= 1.0.0."},{"lang":"es","value":"La vulnerabilidad de Cross-Site Request Forgery (CSRF) en Cynob IT Consultancy WP Custom Post RSS Feed permite XSS almacenado. Este problema afecta al feed RSS de publicaciones personalizadas de WP: desde n\/a hasta 1.0.0. "}],"metrics":{},"weaknesses":[{"source":"audit@patchstack.com","type":"Secondary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https:\/\/patchstack.com\/database\/Wordpress\/Plugin\/wp-custom-post-rss-feed\/vulnerability\/wordpress-wp-custom-post-rss-feed-plugin-1-0-0-csrf-to-stored-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}}]}