CVE-2025-11087 | Zegen Core Plugin up to 2.0.1 on WordPress custom-fonts-uploads.php cross-site request forgery

A vulnerability labeled as problematic has been found in Zegen Core Plugin up to 2.0.1 on WordPress. The impacted element is an unknown function of the file /custom-font-code/custom-fonts-uploads.php. The manipulation results in cross-site request forgery.

This vulnerability is reported as CVE-2025-11087. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More