Security Advisory

CVE-2025-39421

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-04-17 15:17:07
Last updated 2026-04-28 16:12:31
Assigner Patchstack
State PUBLISHED

Description

Cross-Site Request Forgery (CSRF) vulnerability in Mustafa KUCUK WP Sticky Side Buttons wp-sticky-side-buttons allows Stored XSS.This issue affects WP Sticky Side Buttons: from n/a through <= 2.1.