cleantalk
Vulnerabilities and Security Researches

FluentSnippets – The High-Performance file based Custom Code Snippet Plugin, CVE-2025-54010

CVE, Research URL

CVE-2025-54010

Home page URL

Security reports for FluentSnippets – The High-Performance file based Custom Code Snippet Plugin

Application

FluentSnippets – The High-Performance file based Custom Code Snippet Plugin

Published on
Jul 16, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Shahjahan Jewel FluentSnippets allows Cross Site Request Forgery. This issue affects FluentSnippets: from n/a through 10.50.
Affected versions
Min -, max 10.51.
Status
vulnerable
Previous vulnerability researches
BuddyForms Form Elements for WooCommerce (39d1f22f-ea34-4d94-9dc2-12661cf69d36) , Jun 07, 2024
New vulnerability
Residential Address Detection (CVE-2025-48155) , Jul 18, 2025
WooCommerce Affiliate Plugin – Coupon Affiliates (CVE-2025-54022) , Jul 18, 2025
SMTP for Sendinblue – YaySMTP (CVE-2025-48161) , Jul 18, 2025
Theme Builder For Elementor (CVE-2025-54033) , Jul 18, 2025
Contact Form 7 Widget For Elementor Page Builder & Gutenberg Blocks (CVE-2025-54015) , Jul 18, 2025