cleantalk
Vulnerabilities and Security Researches

REST API TO MiniProgram, CVE-2025-28886

CVE, Research URL

CVE-2025-28886

Home page URL

Security reports for REST API TO MiniProgram

Application

REST API TO MiniProgram

Published on
Mar 12, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in xjb REST API TO MiniProgram allows Cross Site Request Forgery. This issue affects REST API TO MiniProgram: from n/a through 4.7.1.
Affected versions
Min -, max 4.7.1.
Status
vulnerable
Previous vulnerability researches
Qubely – Advanced Gutenberg Blocks (CVE-2024-9601) , Feb 19, 2025
Qubely – Advanced Gutenberg Blocks (CVE-2024-13228) , Mar 11, 2025
Qubely – Advanced Gutenberg Blocks (CVE-2025-26767) , Feb 18, 2025
Qubely – Advanced Gutenberg Blocks (CVE-2021-24916) , Jun 07, 2024
Qubely – Advanced Gutenberg Blocks (CVE-2021-25013) , Jun 07, 2024
New vulnerability
WP Crowdfunding (CVE-2025-1508) , Mar 13, 2025
FTP Sync – Theme, Media & Plugin Files (CVE-2025-28892) , Mar 13, 2025
WP Bulk Post Duplicator (CVE-2025-28884) , Mar 13, 2025
Plugins Last Updated Column (CVE-2025-28887) , Mar 13, 2025
Awesome Surveys (CVE-2025-28878) , Mar 13, 2025