CVE-2025-10498 | Ninja Forms Plugin up to 3.12.0 on WordPress cross-site request forgery

September 26, 2025 Yanac

A vulnerability has been found in Ninja Forms Plugin up to 3.12.0 on WordPress and classified as problematic. This affects an unknown function. The manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2025-10498. The attack is possible to be carried out remotely. No exploit exists.VulDB Recent EntriesRead More

CVE-2025-9893 | VM Menu Reorder Plugin Plugin up to 1.0.0 on WordPress Setting vm_set_to_default cross-site request forgery
CVE-2025-9894 | Sync Feedly Plugin up to 1.0.1 on WordPress crsf_cron_job_func cross-site request forgery