CVE-2025-54672 | Photo Engine Plugin up to 6.4.3 on WordPress cross-site request forgery

August 5, 2025 Yanac

A vulnerability has been found in Photo Engine Plugin up to 6.4.3 on WordPress and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2025-54672. The attack can be initiated remotely. There is no exploit available.VulDB Recent EntriesRead More

CVE-2025-54704 | Easy Elementor Addons Plugin up to 2.2.6 on WordPress cross site scripting
CVE-2025-54671 | oik Plugin up to 4.15.2 on WordPress cross-site request forgery