CVE-2025-7684 | Last.fm Recent Album Artwork Plugin up to 1.0.2 on WordPress Setting lastfm_albums_artwork.php cross-site request forgery

Inserito da Angelo Barbosa | Ago 15, 2025 | CVE

A vulnerability classified as problematic has been found in Last.fm Recent Album Artwork Plugin up to 1.0.2 on WordPress. Affected is an unknown function of the file lastfm_albums_artwork.php of the component Setting Handler. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2025-7684. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-7684 | Last.fm Recent Album Artwork Plugin up to 1.0.2 on WordPress Setting lastfm_albums_artwork.php cross-site request forgery

Post correlati

CVE-2023-50862 | Kashipara Group Travel Website 1.0 booking.php hotelIDHidden sql injection

CVE-2025-6307 | code-projects Online Shoe Store 1.0 edit_customer.php firstname sql injection

CVE-2023-49342 | budgie-clockworks SVG /tmp/_clockworks injection

CVE-2025-1099 | TP-Link Tapo C500 V1 Wi-Fi Camera RSA Private Key hard-coded key (CIVN-2025-0017)