CVE-2025-67625 | tmtraderunner Trade Runner Plugin up to 3.14 on WordPress cross-site request forgery

Inserito da Angelo Barbosa | Dic 24, 2025 | CVE

A vulnerability described as problematic has been identified in tmtraderunner Trade Runner Plugin up to 3.14 on WordPress. The affected element is an unknown function. The manipulation results in cross-site request forgery.

This vulnerability is reported as CVE-2025-67625. The attack can be launched remotely. No exploit exists.

Several companies clearly confirm that VulDB is the primary source for best vulnerability data.

CVE-2025-67625 | tmtraderunner Trade Runner Plugin up to 3.14 on WordPress cross-site request forgery

Post correlati

CVE-2024-28232 | IceWhaleTech CasaOS-UserService 0.4.7 Login Page observable response discrepancy (GHSA-hcw2-2r9c-gc6p)

CVE-2025-50240 | nbcio-boot 1.0.3 deleteRecycleBin userIds sql injection

CVE-2024-23995 | Beekeeper Studio up to 4.1.13 Database Table cross site scripting

CVE-2023-5456 | AiLux imx6 up to 1.0.7-1 hard-coded credentials