CVE-2025-24636 | Laymance Technologies MachForm Shortcode Plugin up to 1.4.1 on WordPress cross-site request forgery

Inserito da Angelo Barbosa | Gen 24, 2025 | CVE

A vulnerability classified as problematic was found in Laymance Technologies MachForm Shortcode Plugin up to 1.4.1 on WordPress. Affected by this vulnerability is an unknown functionality of the component Shortcode Handler. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2025-24636. The attack can be launched remotely. There is no exploit available.

CVE-2025-24636 | Laymance Technologies MachForm Shortcode Plugin up to 1.4.1 on WordPress cross-site request forgery

Post correlati

CVE-2025-22144 | NamelessMC Nameless up to 2.1.2 reset_code external reference (GHSA-p883-7496-x35p)

CVE-2024-10467 | Mozilla Firefox up to 131 memory corruption

CVE-2024-42339 | CyberArk Identity Management information disclosure

CVE-2024-45474 | Siemens Tecnomatix Plant Simulation V2404 prior 2302.0016 WRL File memory corruption (ssa-583523)