PT-2026-6247 · WordPress · Themelooks Enter Addons
Published
2026-02-03
·
Updated
2026-02-03
·
CVE-2026-25014
CVSS v3.1
4.3
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
themelooks Enter Addons versions prior to 2.3.3
Description
A Cross-Site Request Forgery (CSRF) issue exists in themelooks Enter Addons. This allows attackers to perform actions on behalf of authenticated users without their knowledge. The issue allows Cross Site Request Forgery.
Recommendations
Update themelooks Enter Addons to a version greater than 2.3.2.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Themelooks Enter Addons