CVE-2025-14168 | WP DB Booster Plugin up to 1.0.1 on WordPress cleanup_all cross-site request forgery

Inserito da Angelo Barbosa | Dic 19, 2025 | CVE

A vulnerability classified as problematic was found in WP DB Booster Plugin up to 1.0.1 on WordPress. The impacted element is the function cleanup_all. Such manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2025-14168. The attack can be launched remotely. No exploit exists.

CVE-2025-14168 | WP DB Booster Plugin up to 1.0.1 on WordPress cleanup_all cross-site request forgery

Post correlati

CVE-2024-37282 | Elastic Cloud Enterprise up to 3.7.1 API Key improper authorization

CVE-2025-54455 | Samsung Electronics MagicINFO 9 Server 21.1050/21.1052 hard-coded credentials

CVE-2024-28054 | Amavis up to 2.12.2/2.13.0 MIME-tools access control (Issue 112)

CVE-2024-25147 | Liferay Portal/DXP Javascript Style Link cross site scripting