cleantalk
Vulnerabilities and Security Researches

Livemesh SiteOrigin Widgets, 0dc46a2ee5ef036dfed29524d3f3f1875466101d

CVE, Research URL

0dc46a2ee5ef036dfed29524d3f3f1875466101d

Home page URL

Security reports for Livemesh SiteOrigin Widgets

Application

Livemesh SiteOrigin Widgets

Published on
Feb 28, 2022
Research Description
Livemesh SiteOrigin Widgets [livemesh-siteorigin-widgets] < 2.5.2 WordPress Livemesh SiteOrigin Widgets plugin <= 2.8.2 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress Livemesh SiteOrigin Widgets plugin (versions <= 2.8.2).
Affected versions
max 2.5.2.
Status
vulnerable
Previous vulnerability researches
Livemesh SiteOrigin Widgets (CVE-2025-8780) , Apr 23, 2026
Livemesh SiteOrigin Widgets (0dc46a2ee5ef036dfed29524d3f3f1875466101d) , Jun 07, 2024
Livemesh SiteOrigin Widgets (CVE-2022-4974) , Nov 14, 2024
New vulnerability
AutomatorWP &#8211; The #1 automator plugin for no-code automation in WordPress (CVE-2025-9539) , Apr 23, 2026
ExactMetrics &#8211; Google Analytics Dashboard for WordPress (Website Stats Plugin) (CVE-2026-5464) , Apr 23, 2026
Kcaptcha (CVE-2026-4121) , Apr 23, 2026
mCatFilter (CVE-2026-4139) , Apr 23, 2026
Short Comment Filter (CVE-2026-3362) , Apr 23, 2026