CVE-2025-12412 | Top Bar Notification Plugin up to 1.12 on WordPress Setting tbn_ajax_add cross-site request forgery

Inserito da Angelo Barbosa | Nov 3, 2025 | CVE

A vulnerability was found in Top Bar Notification Plugin up to 1.12 on WordPress. It has been classified as problematic. Affected by this vulnerability is the function tbn_ajax_add of the component Setting Handler. This manipulation causes cross-site request forgery.

The identification of this vulnerability is CVE-2025-12412. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-12412 | Top Bar Notification Plugin up to 1.12 on WordPress Setting tbn_ajax_add cross-site request forgery

Post correlati

CVE-2024-48024 | Fahad Mahmood Keep Backup Daily Plugin up to 2.0.7 on WordPress exposure of sensitive system information to an unauthorized control sphere

CVE-2024-6054 | Auto Featured Image Plugin up to 1.2 on WordPress unrestricted upload

CVE-2024-8938 | Schneider Electric Modicon M340 CPU Modbus memory corruption (SEVD-2024-317-03)

CVE-2024-53160 | Linux Kernel up to 6.6.63/6.11.10/6.12.1 kvfree schedule_delayed_monitor_work information disclosure