WordPress Constructo Theme <= 4.3.9 - Cross Site Request Forgery (CSRF) Vulnerability

Cross Site Request Forgery CSRF Vulnerability discovered by Tran Nguyen Bao Khanh VCI - VNPT Cyber Immunity in WordPress Theme Constructo versions = 4.3.9...

CVE-2025-58244 WordPress Constructo Theme <= 4.3.9 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Anps Constructo constructo allows Object Injection.This issue affects Constructo: from n/a through = 4.3.9...

CVE-2025-58244 WordPress Constructo Theme <= 4.3.9 - Cross Site Request Forgery (CSRF) Vulnerability

Cross-Site Request Forgery CSRF vulnerability in Anps Constructo constructo allows Object Injection.This issue affects Constructo: from n/a through = 4.3.9...

CVE-2025-58244

CVE-2025-58244 (Constructo) is a CSRF-related vulnerability in the Constructo WordPress theme that, per the provided documents, allows object injection. Affected software ranges to Constructo versions up to 4.3.9. The CVE description and related references (including Wordfence summaries) confirm ...

WordPress Constructo Theme <= 4.3.9 is vulnerable to Cross Site Request Forgery (CSRF)

Software Constructo Type Theme Vulnerable versions = 4.3.9 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2025-58244 Patch priority Low CVSS severity Low 8.8 Developer Claim ownership PSID 60cf627805f3 Credits Tran Nguyen Bao Khanh VCI -...