CVE-2025-11976 | FuseWP Plugin up to 1.1.23.0 on WordPress save_changes cross-site request forgery

Inserito da Angelo Barbosa | Ott 24, 2025 | CVE

A vulnerability labeled as problematic has been found in FuseWP Plugin up to 1.1.23.0 on WordPress. This issue affects the function save_changes. The manipulation results in cross-site request forgery.

This vulnerability is known as CVE-2025-11976. It is possible to launch the attack remotely. No exploit is available.

CVE-2025-11976 | FuseWP Plugin up to 1.1.23.0 on WordPress save_changes cross-site request forgery

Post correlati

CVE-2024-5347 | Happy Addons for Elementor Plugin up to 3.10.9 on WordPress Post Navigation Widget cross site scripting

CVE-2024-13270 | Drupal Freelinking up to 3.x authorization

CVE-2025-6120 | Open Asset Import Library Assimp up to 5.4.3 HL1MDLLoader.cpp read_meshes heap-based overflow (Issue 6220)

CVE-2023-32633 | Intel CSME Installer prior 2328.5.5.0 input validation (intel-sa-00923)