Lucene search
K

10 matches found

CNVD
CNVD
added 2025/11/27 12:0 a.m.3 views

WordPress Peer Publish plugin Cross-Site Request Forgery Vulnerability

The WordPress Peer Publish plugin is a tool for multi-author collaboration that allows users to submit posts to a WordPress blog for review and publication by other users. A cross-site request forgery vulnerability exists in WordPress Peer Publish plugin, which stems from a lack of random number...

4.3CVSS6.8AI score0.00129EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/11/26 7:59 a.m.11 views

CVE-2025-12587

The Peer Publish plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing nonce validation on the website management pages. This makes it possible for unauthenticated attackers to add, modify, or delete website configuratio...

4.3CVSS5.5AI score0.00129EPSS
Exploits0References1
NVD
NVD
added 2025/11/25 8:15 a.m.4 views

CVE-2025-12587

The Peer Publish plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing nonce validation on the website management pages. This makes it possible for unauthenticated attackers to add, modify, or delete website configuratio...

4.3CVSS0.00129EPSS
Exploits0References3
CVE
CVE
added 2025/11/25 7:28 a.m.12 views

CVE-2025-12587

The CVE-2025-12587 issue affects the WordPress Peer Publish plugin. Multiple sources describe a Cross-Site Request Forgery vulnerability in all versions up to 1.0 caused by missing nonce validation on admin pages, allowing unauthenticated attackers to add, modify, or delete site configurations vi...

4.3CVSS5.1AI score0.00129EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/25 7:28 a.m.6 views

CVE-2025-12587 Peer Publish <= 1.0 - Cross-Site Request Forgery

The Peer Publish plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing nonce validation on the website management pages. This makes it possible for unauthenticated attackers to add, modify, or delete website configuratio...

4.3CVSS0.00129EPSS
Exploits0References3
EUVD
EUVD
added 2025/11/25 7:28 a.m.6 views

EUVD-2025-199563

The Peer Publish plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing nonce validation on the website management pages. This makes it possible for unauthenticated attackers to add, modify, or delete website configuratio...

4.3CVSS5AI score0.00129EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2025/11/25 7:28 a.m.6 views

CVE-2025-12587 Peer Publish <= 1.0 - Cross-Site Request Forgery

The Peer Publish plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing nonce validation on the website management pages. This makes it possible for unauthenticated attackers to add, modify, or delete website configuratio...

4.3CVSS5.1AI score0.00129EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/11/25 12:0 a.m.6 views

WordPress plugin Peer Publish 跨站请求伪造漏洞

The WordPress Peer Publish plugin is a tool for multi-author collaboration that allows users to submit posts to a WordPress blog for review and publication by other users. A cross-site request forgery vulnerability exists in WordPress Peer Publish plugin, which stems from a lack of random number...

4.3CVSS6.7AI score0.00129EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/11/25 12:0 a.m.6 views

PT-2025-48000

The Peer Publish plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.0. This is due to missing nonce validation on the website management pages. This makes it possible for unauthenticated attackers to add, modify, or delete website configuratio...

4.3CVSS5.5AI score0.00129EPSS
Exploits0References4
Patchstack
Patchstack
added 2025/11/24 11:39 p.m.9 views

WordPress Peer Publish plugin <= 1.0 - Cross-Site Request Forgery vulnerability

Cross-Site Request Forgery vulnerability discovered by dayea song - Ahnlab in WordPress Plugin Peer Publish versions = 1.0...

4.3CVSS7AI score0.00129EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder