CVE-2025-49353 – WordPress Noindex by Path plugin

CVE ID : CVE-2025-49353

Published : Dec. 31, 2025, 5:36 a.m. | 47 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in Marcin Kijak Noindex by Path allows Stored XSS.This issue affects Noindex by Path: from n/a through 1.0.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…