cleantalk
Vulnerabilities and Security Researches

WP Security Master, CVE-2025-49440

CVE, Research URL

CVE-2025-49440

Home page URL

Security reports for WP Security Master

Application

WP Security Master

Published on
Jun 06, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Vuong Nguyen WP Security Master allows Cross Site Request Forgery. This issue affects WP Security Master: from n/a through 1.0.2.
Affected versions
Min -, max 1.0.2.
Status
vulnerable
Previous vulnerability researches
WC Fields Factory (CVE-2023-0277) , Jun 07, 2024
WC Fields Factory (6cc027737736ffa5a4ad7d18f7aacab3368b4dae) , Jun 07, 2024
New vulnerability
bbPress API (CVE-2025-24763) , Jun 15, 2025
Product Feed for WooCommerce – Google Shops, Facebook Shop, TikTok, Instagram, and More (CVE-2025-49287) , Jun 15, 2025
WP Travel Engine – Best Travel Booking WordPress Plugin (CVE-2025-49308) , Jun 15, 2025
WP Travel Engine – Best Travel Booking WordPress Plugin (CVE-2025-5282) , Jun 15, 2025
Payment QR WooCommerce (CVE-2025-31000) , Jun 15, 2025