cleantalk
Vulnerabilities and Security Researches

FG Drupal to WordPress, CVE-2025-48294

CVE, Research URL

CVE-2025-48294

Home page URL

Security reports for FG Drupal to WordPress

Application

FG Drupal to WordPress

Published on
Jul 16, 2025
Research Description
Server-Side Request Forgery (SSRF) vulnerability in Kerfred FG Drupal to WordPress allows Server Side Request Forgery. This issue affects FG Drupal to WordPress: from n/a through 3.90.0.
Affected versions
Min -, max 3.90.1.
Status
vulnerable
Previous vulnerability researches
Uncanny Toolkit for LearnDash (CVE-2023-23714) , Jun 06, 2024
Uncanny Toolkit for LearnDash (CVE-2025-22268) , Apr 14, 2025
Uncanny Toolkit for LearnDash (CVE-2023-34019) , Jun 10, 2024
Uncanny Toolkit for LearnDash (CVE-2025-48080) , May 18, 2025
Uncanny Toolkit for LearnDash (CVE-2023-34020) , Jun 06, 2024
New vulnerability
Knowledge Base (CVE-2025-7431) , Jul 18, 2025
Real Estate Property 2024 Create Your Own Fields and Search Bar WP Plugin (CVE-2025-48150) , Jul 18, 2025
Infility Global (CVE-2025-47652) , Jul 18, 2025
WP-BusinessDirectory – Business directory plugin for WordPress (CVE-2025-24759) , Jul 18, 2025
Vertical scroll image slideshow gallery (CVE-2025-5752) , Jul 18, 2025