CVE-2025-58922 | ThemeFusion Avada Plugin up to 7.13.1 on WordPress cross-site request forgery

Inserito da Angelo Barbosa | Apr 22, 2026 | CVE

A vulnerability was found in ThemeFusion Avada Plugin up to 7.13.1 on WordPress. It has been classified as problematic. The affected element is an unknown function. This manipulation causes cross-site request forgery.

This vulnerability is registered as CVE-2025-58922. Remote exploitation of the attack is possible. No exploit is available.

Upgrading the affected component is recommended.

CVE-2025-58922 | ThemeFusion Avada Plugin up to 7.13.1 on WordPress cross-site request forgery

Post correlati

CVE-2024-30307 | Adobe Substance 3D Painter up to 9.1.2 out-of-bounds write (apsb24-31)

CVE-2026-28226 | phishingclub Phishing Club up to 1.30.1 Endpoint RemapOrderBy sortBy sql injection (GHSA-4r69-4qff-ccj3)

CVE-2024-53063 | Linux Kernel up to 6.11.7 dvb_register_device out-of-bounds

CVE-2025-26490 | Siemens Opcenter Intelligence prior 2501 log file (ssa-246355)