CVE-2025-1435 | johnjamesjacoby bbPress Plugin up to 2.6.11 on WordPress bbp_user_add_role_on_register cross-site request forgery

Inserito da Angelo Barbosa | Mar 5, 2025 | CVE

A vulnerability was found in johnjamesjacoby bbPress Plugin up to 2.6.11 on WordPress. It has been classified as problematic. Affected is the function bbp_user_add_role_on_register. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2025-1435. It is possible to launch the attack remotely. There is no exploit available.

CVE-2025-1435 | johnjamesjacoby bbPress Plugin up to 2.6.11 on WordPress bbp_user_add_role_on_register cross-site request forgery

Post correlati

CVE-2021-46905 | Linux Kernel up to 5.12.0 hso hso_serial_tty_unregister null pointer dereference

CVE-2024-44191 | Apple visionOS Bluetooth improper authorization

CVE-2024-4417 | Falang Multilanguage Plugin up to 1.3.49 on WordPress cross site scripting

CVE-2024-9815 | Codezips Tourist Management System 1.0 create-package.php packageimage unrestricted upload