What is CVE-2025-66529 — CSRF in Chartify WordPress Plugin?

CVE-2025-66529 is a Cross-Site Request Forgery (CSRF) vulnerability affecting Chartify WordPress plugin versions 0.0.0–3.6.3, allowing attackers to perform unauthorized actions.

Am I affected by CVE-2025-66529 in Chartify WordPress Plugin?

You are affected if you are using Chartify plugin versions 0.0.0 through 3.6.3. Check your plugin version and upgrade immediately if vulnerable.

How do I fix CVE-2025-66529 in Chartify WordPress Plugin?

Upgrade the Chartify plugin to version 3.6.4 or later to resolve the vulnerability. Consider implementing CSP as an additional layer of defense.

Is CVE-2025-66529 being actively exploited?

While no active exploitation has been confirmed, the vulnerability is publicly disclosed and the ease of CSRF exploitation suggests a potential risk.

Where can I find the official Chartify advisory for CVE-2025-66529?

Refer to the Chartify plugin's official website or WordPress plugin repository for the latest advisory and update information.

CVE-2025-66529 — Vulnerability Details

NEXTGUARD

Escanear grátis

CVE-2025-66529 — Vulnerability Details | NextGuard

Passos de Detecçãotraduzindo…

• wordpress / composer / npm:

grep -r 'chartify/chart-builder' /var/www/html/wp-content/plugins/

• wordpress / composer / npm:

wp plugin list | grep Chartify

• wordpress / composer / npm:

wp plugin update Chartify --version=3.6.4

Plugin WordPress Chartify <= 3.6.3 - Vulnerabilidade de Cross Site Request Forgery (CSRF)

Impacto e Cenários de Ataquetraduzindo…

Contexto de Exploraçãotraduzindo…

Quem Está em Riscotraduzindo…

Passos de Detecçãotraduzindo…

Linha do Tempo do Ataque

Inteligência de Ameaças

Software Afetado

Classificação de Fraqueza (CWE)

Linha do tempo

Mitigação e Soluções Alternativastraduzindo…

Como corrigir

Boletim de Segurança CVE

Perguntas frequentestraduzindo…

What is CVE-2025-66529 — CSRF in Chartify WordPress Plugin?

Am I affected by CVE-2025-66529 in Chartify WordPress Plugin?

How do I fix CVE-2025-66529 in Chartify WordPress Plugin?

Is CVE-2025-66529 being actively exploited?

Where can I find the official Chartify advisory for CVE-2025-66529?

Informações do pacote

Seu projeto está afetado?

Detecte esta CVE no seu projeto