CVE-2025-23820

Name of the Vulnerable Software and Affected Versions Laxman Thapa Content Security Policy Pro versions 1.3.5 and earlier

Description A Cross-Site Request Forgery (CSRF) issue allows unauthorized actions to be performed on behalf of a user. This issue can be exploited to perform Cross-Site Request Forgery attacks.

Recommendations For versions 1.3.5 and earlier, as a temporary workaround, consider disabling any functionality that may be exploited by CSRF attacks until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.