CVE-2025-25106 | HackTesting

Cross-Site Request Forgery (CSRF) vulnerability in FancyWP Starter Templates by FancyWP allows Cross Site Request Forgery. This issue affects Starter Templates by FancyWP: from n/a through 2.0.0.

Credits

Abdi Pranata (Patchstack Alliance)

References

https://patchstack.com/database/wordpress/plugin/starter-templates/vulnerability/wordpress-starter-templates-by-fancywp-plugin-2-0-0-csrf-to-arbitrary-plugin-installation-vulnerability?_s_id=cve