CVE-2025-0748 | Fave Themes Homey Plugin up to 2.4.3 on WordPress homey_verify_user_manually cross-site request forgery

Inserito da Angelo Barbosa | Mar 7, 2025 | CVE

A vulnerability was found in Fave Themes Homey Plugin up to 2.4.3 on WordPress. It has been rated as problematic. Affected by this issue is the function homey_verify_user_manually. The manipulation leads to cross-site request forgery.

This vulnerability is handled as CVE-2025-0748. The attack may be launched remotely. There is no exploit available.

CVE-2025-0748 | Fave Themes Homey Plugin up to 2.4.3 on WordPress homey_verify_user_manually cross-site request forgery

Post correlati

CVE-2024-54191 | Linux Kernel up to 6.12.5 Bluetooth iso_conn_big_sync deadlock

CVE-2024-26310 | Archer Platform up to 6.14 P1 API access control

CVE-2023-52556 | OpenBSD up to 7.4 pf toctou

CVE-2024-11126 | Digistar AG-30 Plus 2.6b Login Page excessive authentication