cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,exploited_date,poc,trended,trended_no_1,trended_no_1_date,published,trended_score
CVE-2025-23720,https://securityvulnerability.io/vulnerability/CVE-2025-23720,Cross-Site Request Forgery in Mozilla Web Push leading to Stored XSS Exploit,"A Cross-Site Request Forgery (CSRF) vulnerability exists in Mozilla Web Push, which can be exploited to execute Stored Cross-Site Scripting (XSS) attacks. This flaw affects versions from n/a up to 1.4.0, allowing an attacker to craft malicious requests that can lead to unauthorized actions on behalf of the user, compromising web application security.",Mozilla,Web Push,7.1,HIGH,0.0004299999854993075,false,,false,false,false,,false,false,false,,2025-01-16T20:06:48.634Z,0