Security Advisory

CVE-2025-48304

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-08-28 12:36:47

Last updated 2026-04-01 15:54:36

Assigner Patchstack

State PUBLISHED

Description

Cross-Site Request Forgery (CSRF) vulnerability in Gary Illyes Google XML News Sitemap plugin gn-xml-sitemap allows Stored XSS.This issue affects Google XML News Sitemap plugin: from n/a through <= 0.02.

← Browse all CVEs View on cve.org ↗