{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-15T09:16:56.108","vulnerabilities":[{"cve":{"id":"CVE-2025-30908","sourceIdentifier":"audit@patchstack.com","published":"2025-04-03T14:15:34.330","lastModified":"2026-04-01T17:20:35.427","vulnStatus":"Awaiting Analysis","cveTags":[],"descriptions":[{"lang":"en","value":"Cross-Site Request Forgery (CSRF) vulnerability in Shamalli Web Directory Free web-directory-free allows Stored XSS.This issue affects Web Directory Free: from n\/a through <= 1.7.6."},{"lang":"es","value":"La vulnerabilidad de Cross-Site Request Forgery (CSRF) en Shamalli Web Directory Free permite XSS almacenado. Este problema afecta a Web Directory Free desde n\/d hasta la versiĆ³n 1.7.6."}],"metrics":{},"weaknesses":[{"source":"audit@patchstack.com","type":"Secondary","description":[{"lang":"en","value":"CWE-352"}]}],"references":[{"url":"https:\/\/patchstack.com\/database\/Wordpress\/Plugin\/web-directory-free\/vulnerability\/wordpress-web-directory-free-plugin-1-7-6-csrf-to-cross-site-scripting-xss-vulnerability?_s_id=cve","source":"audit@patchstack.com"}]}}]}