CVE-2025-5932 | Homerunner Plugin up to 1.0.29 on WordPress Setting main_settings cross-site request forgery

June 25, 2025 Yanac

A vulnerability was found in Homerunner Plugin up to 1.0.29 on WordPress. It has been classified as problematic. Affected is the function main_settings of the component Setting Handler. The manipulation leads to cross-site request forgery.

This vulnerability is traded as CVE-2025-5932. It is possible to launch the attack remotely. There is no exploit available.VulDB Recent EntriesRead More