Rene Ade SensitiveTagCloud Cross-Site Request Forgery Vulnerability Allowing Stored Cross-Site Scripting
Vulnerability
A Cross-Site Request Forgery (CSRF) vulnerability has been identified in the Rene Ade SensitiveTagCloud WordPress plugin, specifically in versions prior to and including 1.4.1. This vulnerability allows for Stored Cross-Site Scripting (XSS) attacks, where malicious scripts can be injected and executed within the user's browser.
Impact
Exploitation of this vulnerability allows for Cross-Site Request Forgery attacks, leading to Stored Cross-Site Scripting vulnerabilities.
Added: Dec 31, 2025, 6:19 AM
Updated: Dec 31, 2025, 6:19 AM
Vulnerability Rating
Custom Algorithm
spread
0.0impact
1.7exploitability
6.4remediation
0.0relevance
1.8threat
0.0urgency
2.9incentive
1.7Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.