CVE-2025-62120

Cross-Site Request Forgery CSRF vulnerability in Rick Beckman OpenHook thesis-openhook allows Cross Site Request Forgery.This issue affects OpenHook: from n/a through = 4.3.1...

CVE-2025-62134

Technical details for CVE-2025-62134 are not publicly provided in the supplied documents. Monitor for updates.

CVE-2025-69021

Cross-Site Request Forgery CSRF vulnerability in Ays Pro Popup box ays-popup-box allows Cross Site Request Forgery.This issue affects Popup box: from n/a through = 6.0.7...

CVE-2025-62992

Technical details for CVE-2025-62992 are not publicly available in the provided connected documents. The Initial Description notes a CSRF/Path Traversal issue in Everest Backup

CVE-2025-49353

Cross-Site Request Forgery CSRF vulnerability in Marcin Kijak Noindex by Path noindex-by-path allows Stored XSS.This issue affects Noindex by Path: from n/a through = 1.0...

CVE-2025-68885

Cross-Site Request Forgery CSRF vulnerability in page-carbajal Custom Post Status custom-post-status allows Stored XSS.This issue affects Custom Post Status: from n/a through = 1.1.0...

WordPress Custom Post Status plugin <= 1.1.0 - Cross Site Request Forgery (CSRF) to Stored XSS vulnerability

Cross Site Request Forgery CSRF to Stored XSS vulnerability discovered by Skalucy in WordPress Plugin Custom Post Status versions = 1.1.0...

CVE-2025-49354 WordPress Recent Posts From Each Category plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Mindstien Technologies Recent Posts From Each Category recent-posts-from-each-category allows Stored XSS.This issue affects Recent Posts From Each Category: from n/a through = 1.4...

EUVD-2025-205881

Cross-Site Request Forgery CSRF vulnerability in Socialprofilr Social Profilr allows Stored XSS.This issue affects Social Profilr: from n/a through 1.0...

CVE-2025-49346

Cross-Site Request Forgery CSRF vulnerability in peterwsterling Simple Archive Generator simple-archive-generator allows Stored XSS.This issue affects Simple Archive Generator: from n/a through = 5.2...

EUVD-2025-205873

Cross-Site Request Forgery CSRF vulnerability in eLEOPARD Behance Portfolio Manager allows Stored XSS.This issue affects Behance Portfolio Manager: from n/a through 1.7.5...

EUVD-2022-55924

JM-DATA ONU JF511-TV version 1.0.67 is vulnerable to cross-site request forgery CSRF attacks, allowing attackers to perform administrative actions on behalf of authenticated users without their knowledge or consent...

PT-2025-54403

Server-Side Request Forgery SSRF vulnerability in extendons WordPress & WooCommerce Scraper Plugin, Import Data from Any Site allows Server Side Request Forgery.This issue affects WordPress & WooCommerce Scraper Plugin, Import Data from Any Site: from n/a through 1.0.7...

WordPress CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts plugin <= 4.2 - Cross-Site Request Forgery to Settings Update vulnerability

Cross-Site Request Forgery to Settings Update vulnerability discovered by luckybuddy in WordPress Plugin cits-support-svg-webp-media-upload versions = 4.2...

PT-2025-54303

Name of the Vulnerable Software and Affected Versions Everest Backup versions through 2.3.9 Description A Cross-Site Request Forgery CSRF issue exists in Everest Backup, potentially allowing Path Traversal. Recommendations Versions prior to 2.3.9 are affected. At the moment, there is no informati...

PT-2025-54336

Name of the Vulnerable Software and Affected Versions OpenHook versions through 4.3.1 Description A Cross-Site Request Forgery CSRF issue exists in OpenHook, potentially allowing attackers to perform actions on behalf of authenticated users. This occurs due to insufficient protection against forg...

WordPress plugin Genemy 代码问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A code issue...

PT-2025-54335

Name of the Vulnerable Software and Affected Versions Jayce53 EasyIndex versions through 1.1.1704 Description A Cross-Site Request Forgery CSRF issue exists in Jayce53 EasyIndex. This allows an attacker to perform actions on behalf of an authenticated user without their knowledge. The issue affec...

PT-2025-54360

Cross-Site Request Forgery CSRF vulnerability in Channelize.Io Team Live Shopping & Shoppable Videos For WooCommerce allows Cross Site Request Forgery.This issue affects Live Shopping & Shoppable Videos For WooCommerce: from n/a through 2.2.0...

PT-2025-54337

Name of the Vulnerable Software and Affected Versions A WP Life Contact Form Widget versions through 1.5.1 Description A Cross-Site Request Forgery CSRF issue exists in A WP Life Contact Form Widget. This allows attackers to perform actions on behalf of authenticated users without their knowledge...