CVE-2025-13408 | Foxtool All-in-One Plugin up to 2.5.2 on WordPress Google OAuth Connection foxtool_login_google cross-site request forgery

December 11, 2025 Yanac

A vulnerability was found in Foxtool All-in-One Plugin up to 2.5.2 on WordPress. It has been rated as problematic. This affects the function foxtool_login_google of the component Google OAuth Connection. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2025-13408. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More