CVE-2025-24716 — Cross-Site Request Forgery in Herd Effects

CWE-352 — Cross-Site Request Forgery3 documents3 sources

Severity

—N/A

No vector

EPSS

0.1%

top 77.74%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Wow-company Herd Effects

Timeline

PublishedJan 24

Description

Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Herd Effects mwp-herd-effect allows Cross Site Request Forgery.This issue affects Herd Effects: from n/a through <= 6.2.1.

Affected Packages1 packages

▶CVEListV5wow-company/herd_effects6.2.1

🔴Vulnerability Details

CVEList

WordPress Herd Effects Plugin <= 6.2.1 - Cross Site Request Forgery (CSRF) to Settings Change vulnerability↗2025-01-24

▶

GHSA

GHSA-rhg7-3675-h757: Cross-Site Request Forgery (CSRF) vulnerability in Wow-Company Herd Effects allows Cross Site Request Forgery↗2025-01-24

▶