CVE-2025-25154 | scweber Custom Comment Notifications Plugin up to 1.0.8 on WordPress cross-site request forgery

Inserito da Angelo Barbosa | Feb 7, 2025 | CVE

A vulnerability was found in scweber Custom Comment Notifications Plugin up to 1.0.8 on WordPress. It has been classified as problematic. This affects an unknown part. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2025-25154. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-25154 | scweber Custom Comment Notifications Plugin up to 1.0.8 on WordPress cross-site request forgery

Post correlati

CVE-2018-9394 | Google Android Kernel gl_p2p.c mtk_p2p_wext_set_key out-of-bounds write

CVE-2024-1830 | code-projects Library System 1.0 lost-password.php email sql injection

CVE-2024-27020 | Linux Kernel up to 5.15.156/6.1.87/6.6.28/6.8.7/6.9-rc4 nf_tables __nft_expr_type_get race condition

CVE-2024-24859 | Linux Kernel up to 6.8-rc1 Bluetooth sniff_min_interval_set/sniff_max_interval_set race condition