PT-2025-4497 · WordPress · Admin Debug Wordpress – Enable Debug
Abdi Pranata
·
Published
2025-01-07
·
Updated
2025-01-07
·
CVE-2025-22503
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Digital Zoom Studio Admin debug wordpress – enable debug versions 1.0.13 and earlier
Description
The issue is a Cross-Site Request Forgery (CSRF) vulnerability. It affects the Admin debug wordpress – enable debug, allowing Cross Site Request Forgery when debug is enabled.
Recommendations
For versions 1.0.13 and earlier, consider disabling the debug mode to mitigate the risk of exploitation.
Restrict access to the Admin debug wordpress – enable debug module to minimize the risk of exploitation.
Avoid using the debug feature in the affected Admin debug wordpress – enable debug until the issue is resolved.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Admin Debug Wordpress – Enable Debug