CVE-2025-67989 | LMPixels Kerge Plugin up to 4.1.3 on WordPress server-side request forgery

Inserito da Angelo Barbosa | Dic 16, 2025 | CVE

A vulnerability was found in LMPixels Kerge Plugin up to 4.1.3 on WordPress. It has been declared as critical. This issue affects some unknown processing. Such manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2025-67989. The attack can be launched remotely. No exploit exists.

CVE-2025-67989 | LMPixels Kerge Plugin up to 4.1.3 on WordPress server-side request forgery

Post correlati

CVE-2023-51763 | ActiveAdmin up to 3.1.x csv_builder.rb csv injection

CVE-2024-50585 | Numerix License Server Administration System 1.1_596 HTTP POST Request nlslogin.jsp cross site scripting

CVE-2024-27873 | Apple iOS/iPadOS Video out-of-bounds write

CVE-2024-1318 | Feedzy RSS Aggregator Plugin up to 4.4.2 on WordPress Page authorization