CVE-2025-12560 | Blog2Social Plugin up to 8.6.0 on WordPress getFullContent post_url server-side request forgery

A vulnerability described as critical has been identified in Blog2Social Plugin up to 8.6.0 on WordPress. Affected is the function getFullContent. The manipulation of the argument post_url results in server-side request forgery.

This vulnerability was named CVE-2025-12560. The attack may be performed from remote. There is no available exploit.VulDB Recent EntriesRead More