← Back

CVE-2023-25989

nvd nist
Published: Oct 3, 2023Modified: Jun 17, 2026

JSON object

Loading...
8.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 2.8 / Impact: 5.9
Source: NVD

Description

Cross-Site Request Forgery (CSRF) vulnerability in Meks Video Importer, Meks Time Ago, Meks ThemeForest Smart Widget, Meks Smart Author Widget, Meks Audio Player, Meks Easy Maps, Meks Easy Photo Feed Widget, Meks Simple Flickr Widget, Meks Easy Ads Widget, Meks Smart Social Widget plugins leading to dismiss or the popup.

Affected (10)

10 products
Meks Audio Player
Meks Easy Ads Widget
Meks Easy Maps
Meks Easy Photo Feed Widget
Meks Simple Flickr Widget
Meks Smart Author Widget
Meks Smart Social Widget
Meks Themeforest Smart Widget
Meks Time Ago
Meks Video Importer
Configuration A
10 vulnerable

References (20)

Timeline

No history available yet.