CVE-2025-14162 | BMLT Plugin up to 3.11.4 on WordPress Setting BMLTPlugin_create_option cross-site request forgery

December 11, 2025 Yanac

A vulnerability labeled as problematic has been found in BMLT Plugin up to 3.11.4 on WordPress. Impacted is the function BMLTPlugin_create_option of the component Setting Handler. Such manipulation leads to cross-site request forgery.

This vulnerability is uniquely identified as CVE-2025-14162. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More