2 matches found
CVE-2025-8103
CVE-2025-8103 refers to the WPeMatico RSS Feed Fetcher plugin for WordPress (versions up to and including 2.8.7). It is a Cross-Site Forgery (CSRF) vulnerability caused by missing nonce validation in handle_feedback_submission(), enabling unauthenticated attackers to deactivate the plugin by tric...
WordPress WPeMatico RSS Feed Fetcher plugin <= 2.8.7 - Cross-Site Request Forgery to Plugin Deactivation via handle_feedback_submission Function vulnerability
Cross-Site Request Forgery to Plugin Deactivation via handlefeedbacksubmission Function vulnerability discovered by wesley wcraft in WordPress Plugin WPeMatico RSS Feed Fetcher versions = 2.8.7...