cleantalk
Vulnerabilities and Security Researches

Google News Editors Picks Feed Generator, CVE-2025-28860

CVE, Research URL

CVE-2025-28860

Home page URL

Security reports for Google News Editors Picks Feed Generator

Application

Google News Editors Picks Feed Generator

Published on
Mar 12, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in PPDPurveyor Google News Editors Picks Feed Generator allows Stored XSS. This issue affects Google News Editors Picks Feed Generator: from n/a through 2.1.
Affected versions
Min -, max 2.1.
Status
vulnerable
Previous vulnerability researches
Google News Editors Picks Feed Generator (CVE-2025-28860) , Mar 13, 2025
New vulnerability
Directory Listings WordPress plugin – uListing (CVE-2025-1653) , Mar 17, 2025
Directory Listings WordPress plugin – uListing (CVE-2025-1657) , Mar 17, 2025
Thumbnail carousel slider (CVE-2019-25222) , Mar 16, 2025
WP Simple Slideshow (CVE-2025-26576) , Mar 16, 2025
pixelstats (CVE-2025-2164) , Mar 16, 2025