CVE-2025-13361 | Web to SugarCRM Lead Plugin up to 1.0.0 on WordPress cross-site request forgery

Inserito da Angelo Barbosa | Dic 20, 2025 | CVE

A vulnerability was found in Web to SugarCRM Lead Plugin up to 1.0.0 on WordPress. It has been rated as problematic. Affected by this issue is some unknown functionality. Performing manipulation results in cross-site request forgery.

This vulnerability is identified as CVE-2025-13361. The attack can be initiated remotely. There is not any exploit available.

CVE-2025-13361 | Web to SugarCRM Lead Plugin up to 1.0.0 on WordPress cross-site request forgery

Post correlati

CVE-2024-21403 | Microsoft Azure Kubernetes Service Confidential Containers Remote Code Execution

CVE-2024-12953 | 1000 Projects Portfolio Management System MCA 1.0 /update_pd_process.php profile unrestricted upload

CVE-2024-0216 | Google Doc Embedder Plugin up to 2.6.4 on WordPress server-side request forgery

CVE-2024-20028 | MediaTek MT8512 Da out-of-bounds write (ALPS08541632)