Mobile Site Redirect Plugin CSRF Enables Stored XSS//Published on 2025-10-03//CVE-2025-9884