cleantalk
Vulnerabilities and Security Researches

PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes, CVE-2026-25322

CVE, Research URL

CVE-2026-25322

Home page URL

Security reports for PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes

Application

PublishPress Revisions: Duplicate Posts, Submit, Approve and Schedule Content Changes

Published on
Feb 19, 2026
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in PublishPress PublishPress Revisions revisionary allows Cross Site Request Forgery.This issue affects PublishPress Revisions: from n/a through <= 3.7.22.
Affected versions
max 3.7.22.
Status
vulnerable
Previous vulnerability researches
rtMedia for WordPress, BuddyPress and bbPress (486aa334-badc-4af2-abe0-77904d768b90) , Jun 07, 2024
rtMedia for WordPress, BuddyPress and bbPress (CVE-2023-5931) , Jun 07, 2024
rtMedia for WordPress, BuddyPress and bbPress (CVE-2023-5939) , Jun 07, 2024
rtMedia for WordPress, BuddyPress and bbPress (CVE-2024-3293) , Jun 07, 2024
rtMedia for WordPress, BuddyPress and bbPress (CVE-2026-25325) , Feb 27, 2026
New vulnerability
SlimStat Analytics (CVE-2025-13431) , Feb 27, 2026
SlimStat Analytics (CVE-2025-69323) , Feb 27, 2026
Video Share VOD &#8211; Turnkey Video Site Builder Script (CVE-2025-13727) , Feb 27, 2026
Nelio Popups (CVE-2026-25016) , Feb 27, 2026
WP Job Manager (CVE-2026-25404) , Feb 27, 2026