CVE-2025-9891 | User Sync Plugin up to 1.0.2 on WordPress mo_user_sync_form_handler cross-site request forgery

A vulnerability marked as problematic has been reported in User Sync Plugin up to 1.0.2 on WordPress. The impacted element is the function mo_user_sync_form_handler. Performing manipulation results in cross-site request forgery.

This vulnerability was named CVE-2025-9891. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More