Fontific
1 CVEs
product
Monthly
Cross-Site Request Forgery (CSRF) vulnerability in Andrei Ivasiuc Fontific | Google Fonts allows Stored XSS.1.6. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Google
XSS
CSRF
Fontific
NVD
CVSS 3.1
7.1
EPSS
0.1%
EPSS 0%
CVSS 7.1
HIGH
This Week
Cross-Site Request Forgery (CSRF) vulnerability in Andrei Ivasiuc Fontific | Google Fonts allows Stored XSS.1.6. Rated high severity (CVSS 7.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
Google
XSS
CSRF
+1
NVD