CVE-2025-9890 | Theme Editor Plugin up to 3.0 on WordPress theme_editor_theme cross-site request forgery

Inserito da Angelo Barbosa | Ott 18, 2025 | CVE

A vulnerability identified as problematic has been detected in Theme Editor Plugin up to 3.0 on WordPress. Affected is the function theme_editor_theme. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2025-9890. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-9890 | Theme Editor Plugin up to 3.0 on WordPress theme_editor_theme cross-site request forgery

Post correlati

CVE-2024-6747 | Checkmk up to 2.0.0p39/2.1.0p48/2.2.0p35/2.3.0p17 insertion of sensitive information into sent data

CVE-2024-37770 | 14Finger 1.1 fingerprint Privilege Escalation (Issue 13)

CVE-2024-13015 | PHPGurukul Maid Hiring Management System 1.0 search-booking-request.php searchdata cross site scripting

CVE-2024-6053 | TeamViewer Meeting/Remote Full Client exposure of private personal information to an unauthorized actor