CVE-2025-13383 | BestWebSoft Job Board Plugin up to 1.2.1 on WordPress update_user_meta cross-site request forgery

Inserito da Angelo Barbosa | Nov 25, 2025 | CVE

A vulnerability described as problematic has been identified in BestWebSoft Job Board Plugin up to 1.2.1 on WordPress. This affects the function update_user_meta. Executing manipulation can lead to cross-site request forgery.

This vulnerability appears as CVE-2025-13383. The attack may be performed from remote. There is no available exploit.

CVE-2025-13383 | BestWebSoft Job Board Plugin up to 1.2.1 on WordPress update_user_meta cross-site request forgery

Post correlati

CVE-2024-8603 | B&R Industrial Automation Automation Runtime/mapp View risky encryption

CVE-2024-0729 | ForU CMS up to 2020-06-23 cms_admin.php a_name sql injection

CVE-2024-35213 | BlackBerry QNX Software Development Platform 6.6/7.0/7.1 SGI Image Codec input validation

CVE-2025-20166 | Cisco Common Services Platform Collector Software 2.11/2.11.0.1/2.11.0.2/2.11.0.3/30.1.1-0 Interface cross site scripting (cisco-sa-cspc-xss-CDOJZyH)