CVE-2025-39512

UNKNOWN 0.0

WordPress Bulk Term Editor plugin <= 1.1.4 - Cross Site Request Forgery (CSRF) Vulnerability

CVSS Score

0.0

EPSS Score

0.0%

EPSS Percentile

0th

Cross-Site Request Forgery (CSRF) vulnerability in Yuya Hoshino Bulk Term Editor bulk-term-editor allows Cross Site Request Forgery.This issue affects Bulk Term Editor: from n/a through <= 1.1.4.

CWE	CWE-352
Vendor	yuya hoshino
Product	bulk term editor
Published	Apr 16, 2025
Last Updated	Apr 1, 2026

Stay Ahead of the Next One

Get instant alerts for yuya hoshino bulk term editor

Be the first to know when new unknown vulnerabilities affecting yuya hoshino bulk term editor are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

Affected Versions

Yuya Hoshino / Bulk Term Editor

0 ≤ 1.1.4

References

NVD ↗ CVE.org ↗ EPSS Data ↗

patchstack.com: https://patchstack.com/database/Wordpress/Plugin/bulk-term-editor/vulnerability/wordpress-bulk-term-editor-1-1-4-cross-site-request-forgery-csrf-vulnerability?_s_id=cve

Credits

Skalucy | Patchstack Bug Bounty Program