CVE-2025-48325 | WP Admin Theme Plugin up to 1.0 on WordPress Setting cross-site request forgery

Inserito da Angelo Barbosa | Ago 26, 2025 | CVE

A vulnerability described as problematic has been identified in WP Admin Theme Plugin up to 1.0 on WordPress. This affects an unknown part of the component Setting Handler. Executing manipulation can lead to cross-site request forgery.

This vulnerability is handled as CVE-2025-48325. The attack can be executed remotely. There is not any exploit available.

CVE-2025-48325 | WP Admin Theme Plugin up to 1.0 on WordPress Setting cross-site request forgery

Post correlati

CVE-2024-9950 | Forescout SecureConnector up to 11.4 on Windows temp file

CVE-2024-51094 | Snipe-IT 7.0.13 Build 15514 Edit Your Profile /account/profile Name Privilege Escalation

CVE-2024-11879 | Stripe Donation Plugin up to 1.2.5 on WordPress cross site scripting

CVE-2024-29036 | Saleor Storefront Authentication createSaleorAuthClient information disclosure (GHSA-52cq-c7x7-cqw4)