CVE-2025-30804

Name of the Vulnerable Software and Affected Versions wpShopGermany IT-RECHT KANZLEI versions n/a through 2.0

Description The issue is a Cross-Site Request Forgery (CSRF) vulnerability, which allows an attacker to perform unauthorized actions on a user's account. This can be achieved by tricking the user into performing a specific action, such as clicking a link or submitting a form, that the attacker has crafted to exploit the vulnerability.

Recommendations For versions n/a through 2.0, update to a version that includes a fix for this issue, however, at the moment, there is no information about a newer version that contains a fix for this issue. As a temporary workaround, consider implementing additional security measures to prevent CSRF attacks, such as validating user requests and ensuring that sensitive actions require explicit user confirmation.