CVE-2025-54732
WordPress WPDM – Premium Packages Plugin <= 6.0.2 - Cross Site Request Forgery (CSRF) Vulnerability
CVSS Score
0.0
EPSS Score
0.0%
EPSS Percentile
0th
Cross-Site Request Forgery (CSRF) vulnerability in Shahjada WPDM – Premium Packages wpdm-premium-packages allows Cross Site Request Forgery.This issue affects WPDM – Premium Packages: from n/a through <= 6.0.2.
| CWE | CWE-352 |
| Vendor | shahjada |
| Product | wpdm – premium packages |
| Published | Aug 14, 2025 |
| Last Updated | Apr 1, 2026 |
Stay Ahead of the Next One
Get instant alerts for shahjada wpdm – premium packages
Be the first to know when new unknown vulnerabilities affecting shahjada wpdm – premium packages are published — delivered to Slack, Telegram or Discord.
Get Free Alerts →
Free · No credit card · 60 sec setup
Affected Versions
Shahjada / WPDM – Premium Packages
0 ≤ 6.0.2
References
Credits
Mika | Patchstack Bug Bounty Program