CVE-2025-64271

Severity CVSS v4.0:

Pending analysis

Type:

CWE-352 Cross-Site Request Forgery (CSRF)

Publication date:

13/11/2025

Last modified:

13/11/2025

Description

Cross-Site Request Forgery (CSRF) vulnerability in HasThemes WP Plugin Manager wp-plugin-manager allows Cross Site Request Forgery.This issue affects WP Plugin Manager: from n/a through

Impact

References to Advisories, Solutions, and Tools

https://vdp.patchstack.com/database/Wordpress/Plugin/wp-plugin-manager/vulnerability/wordpress-wp-plugin-manager-plugin-1-4-7-cross-site-request-forgery-csrf-vulnerability?_s_id=cve