PT-2025-36142 · WordPress · Trustmate.Io – Woocommerce Integration

Nguyen Xuan Chien

Published

2025-09-05

Updated

2025-09-05

CVE-2025-58802

CVSS v3.1

4.3

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions TrustMate.io – WooCommerce integration versions through 1.14.0

Description A Cross-Site Request Forgery (CSRF) issue exists in the TrustMate.io – WooCommerce integration. This allows attackers to potentially perform actions on behalf of an authenticated user without their knowledge.

Recommendations Update TrustMate.io – WooCommerce integration to a version later than 1.14.0.

Fix

CSRF

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-352

Related Identifiers

CVE-2025-58802

Affected Products

Trustmate.Io – Woocommerce Integration

PT-2025-36142 · WordPress · Trustmate.Io – Woocommerce Integration

CVE-2025-58802

Weakness Enumeration

Related Identifiers

Affected Products

References · 4