cleantalk
Vulnerabilities and Security Researches

Wishlist, CVE-2025-32272

CVE, Research URL

CVE-2025-32272

Home page URL

Security reports for Wishlist

Application

Wishlist

Published on
Apr 04, 2025
Research Description
Wishlist [wishlist] <= 1.0.44 (unfixed) CVE-2025-32272 [en] Cross-Site Request Forgery (CSRF) vulnerability in PickPlugins Wishlist allows Cross Site Request Forgery. This issue affects Wishlist: from n/a through 1.0.44.
Affected versions
Min -, max 1.0.44.
Status
vulnerable
Previous vulnerability researches
Ni Purchase Order(PO) For WooCommerce (CVE-2023-5957) , Jun 06, 2024
New vulnerability
Advanced All in One Admin Search by WP Spotlight (CVE-2025-32261) , Apr 06, 2025
Free Booking Plugin for Hotels, Restaurant and Car Rental &#8211; eaSYNC (CVE-2025-32219) , Apr 06, 2025
Salon booking system (CVE-2025-32220) , Apr 06, 2025
1 Click WordPress Migration Plugin &#8211; 100% FREE for a limited time (CVE-2025-32257) , Apr 06, 2025
Sparkle Elementor Kit (CVE-2025-32157) , Apr 06, 2025