cleantalk
Vulnerabilities and Security Researches

hpb seo plugin for WordPress, CVE-2025-60075

CVE, Research URL

CVE-2025-60075

Home page URL

Security reports for hpb seo plugin for WordPress

Application

hpb seo plugin for WordPress

Published on
Oct 29, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Allegro Marketing hpb seo plugin for WordPress hpbseo allows Reflected XSS.This issue affects hpb seo plugin for WordPress: from n/a through <= 3.0.1.
Affected versions
max 3.0.1.
Status
vulnerable
Previous vulnerability researches
Luzuk Team (CVE-2024-51871) , Nov 12, 2024
New vulnerability
Video Gallery by Huzzaz (CVE-2025-62910) , Nov 10, 2025
Export Categories (CVE-2025-62922) , Nov 10, 2025
Custom CSS (CVE-2025-48096) , Nov 10, 2025
Task Scheduler (CVE-2025-10056) , Nov 10, 2025
Links shortcode (CVE-2025-62898) , Nov 10, 2025