CVE-2025-39544

Name of the Vulnerable Software and Affected Versions Bill Minozzi WP Tools versions n/a through 5.18

Description The issue is a Cross-Site Request Forgery (CSRF) vulnerability that allows Path Traversal. This means an attacker could potentially trick a user into performing unintended actions on the web application, and also access files or directories outside the intended directory structure.

Recommendations For Bill Minozzi WP Tools versions n/a through 5.18, update to a version that contains a fix for this issue, as using an affected version poses a significant risk. At the moment, there is no information about a newer version that contains a fix for this vulnerability.