CVE-2025-24001

Name of the Vulnerable Software and Affected Versions PPO Call To Actions versions 0.1.3 and earlier

Description A Cross-Site Request Forgery (CSRF) issue affects PPO Call To Actions, allowing unauthorized requests. The estimated number of potentially affected devices worldwide is not specified. There is no information about real-world incidents where this issue was exploited. Technical details about exploitation include the ability to perform Cross Site Request Forgery.

Recommendations For versions 0.1.3 and earlier, as a temporary workaround, consider disabling the vulnerable functionality until a patch is available. Restrict access to the PPO Call To Actions module to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.