CVE-2025-30994
BaseFortify
Publication date: 2025-06-06
Last updated on: 2026-04-23
Assigner: Patchstack
Description
Description
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
Helpful Resources
Exploitability
| CWE ID | Description |
|---|---|
| CWE-352 | The web application does not, or cannot, sufficiently verify whether a request was intentionally provided by the user who sent the request, which could have originated from an unauthorized actor. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is a Cross-Site Request Forgery (CSRF) in the CubeWP β All-in-One Dynamic Content Framework WordPress plugin (versions up to 1.1.23). It allows an attacker to trick authenticated users with higher privileges into performing unauthorized actions, such as changing plugin settings, without their consent. The attacker exploits the trust a site has in the user's browser to execute these unwanted actions. [1]
How can this vulnerability impact me? :
The impact of this vulnerability is that an attacker can cause unauthorized changes to the plugin's settings by exploiting authenticated users with higher privileges. Although the severity is low (CVSS 4.3), it can lead to unwanted configuration changes that may affect the website's behavior or security. There is no official patch yet, so users must rely on virtual patching or other mitigations. If exploited, it may require professional incident response to address potential compromises. [1]
How can this vulnerability be detected on my network or system? Can you suggest some commands?
Detection of this CSRF vulnerability is challenging because it exploits authenticated user actions without authentication required by the attacker. There are no specific commands provided to detect this vulnerability on your network or system. Users are advised to monitor for unauthorized changes in the plugin's settings and consider professional incident response services if compromise is suspected, as plugin-based malware scanners may be unreliable. [1]
What immediate steps should I take to mitigate this vulnerability?
Immediate mitigation steps include applying virtual patching (vPatching) to protect against exploitation since no official patch or fixed version is currently available. Users should limit access to higher privileged users, monitor for suspicious activity, and seek professional incident response services if compromise is suspected. Due to the low severity and low exploitation risk, prioritizing timely protection is still important to prevent opportunistic automated attacks. [1]