WordPress Ultimate FAQ प्लगइन <= 2.4.3 - क्रॉस साइट रिक्वेस्ट फोर्जरी (CSRF) भेद्यता

The CSRF vulnerability in Ultimate FAQ allows an attacker to craft malicious requests that appear to originate from a legitimate user. If a user is tricked into visiting a specially crafted URL, the attacker can execute actions on their behalf, such as modifying FAQ settings or creating new FAQs. This could lead to unauthorized changes to the website's content and potentially compromise the integrity of the site. The impact is amplified if the affected user has administrative privileges, as an attacker could then gain control over the entire WordPress installation.

Websites utilizing the Ultimate FAQ plugin, particularly those running older versions (0.0.0–2.4.3), are at risk. Shared hosting environments where plugin updates are managed centrally are also at increased risk, as users may not have direct control over plugin versions.

• wordpress / composer / npm:

grep -r 'ultimate-faqs/includes/class-ultimate-faq-admin.php' * | grep -i 'wp_nonce_field'

• generic web:

curl -I https://your-wordpress-site.com/wp-content/plugins/ultimate-faq/includes/class-ultimate-faq-admin.php | grep -i 'ultimate-faqs'

1. 2025-12-09Disclosure

   disclosure

सक्रिय इंस्टॉलेशन

30Kलोकप्रिय

प्लगइन रेटिंग

4.6

WordPress आवश्यक

6.0+

संगत संस्करण तक

7.0

PHP आवश्यक

7.4+

1. आरक्षित2025-12-09
2. प्रकाशित2025-12-09
3. संशोधित2026-04-28
4. EPSS अद्यतन2026-03-23

The primary mitigation for CVE-2025-67590 is to upgrade the Ultimate FAQ plugin to version 2.4.4 or later. If immediate upgrading is not possible due to compatibility issues or testing requirements, consider implementing a Web Application Firewall (WAF) with CSRF protection rules. Additionally, ensure that all user accounts utilize strong, unique passwords and that two-factor authentication is enabled wherever possible. Regularly review WordPress user roles and permissions to minimize the potential impact of a successful attack.