A vulnerability has been found in PopAd Plugin up to 1.0.4 on WordPress and classified as critical. Affected is an unknown function. This manipulation causes server-side request forgery.

This vulnerability appears as CVE-2025-60175. The attack may be initiated remotely. There is no available exploit.