cleantalk
Vulnerabilities and Security Researches

FG Drupal to WordPress, CVE-2025-48294

CVE, Research URL

CVE-2025-48294

Home page URL

Security reports for FG Drupal to WordPress

Application

FG Drupal to WordPress

Published on
Jul 16, 2025
Research Description
Server-Side Request Forgery (SSRF) vulnerability in Kerfred FG Drupal to WordPress allows Server Side Request Forgery. This issue affects FG Drupal to WordPress: from n/a through 3.90.0.
Affected versions
Min -, max 3.90.1.
Status
vulnerable
Previous vulnerability researches
BuddyForms Form Elements for WooCommerce (39d1f22f-ea34-4d94-9dc2-12661cf69d36) , Jun 07, 2024
New vulnerability
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2025-54022) , Jul 18, 2025
SMTP for Sendinblue – YaySMTP (CVE-2025-48161) , Jul 18, 2025
Theme Builder For Elementor (CVE-2025-54033) , Jul 18, 2025
Contact Form 7 Widget For Elementor Page Builder & Gutenberg Blocks (CVE-2025-54015) , Jul 18, 2025
Contact Form 7 Widget For Elementor Page Builder & Gutenberg Blocks (CVE-2025-7360) , Jul 18, 2025