๐Ÿ” CVE Alert

CVE-2025-62009

MEDIUM 4.3

WordPress UPC/EAN/GTIN Code Generator plugin <= 2.0.2 - Cross Site Request Forgery (CSRF) vulnerability

CVSS Score
4.3
EPSS Score
0.0%
EPSS Percentile
0th

Cross-Site Request Forgery (CSRF) vulnerability in Dmitry V. (CEO of "UKR Solution") UPC/EAN/GTIN Code Generator upc-ean-barcode-generator allows Cross Site Request Forgery.This issue affects UPC/EAN/GTIN Code Generator: from n/a through <= 2.0.2.

CWE CWE-352
Vendor dmitry v. (ceo of "ukr solution")
Product upc/ean/gtin code generator
Published Oct 22, 2025
Last Updated Apr 1, 2026
Stay Ahead of the Next One

Get instant alerts for dmitry v. (ceo of "ukr solution") upc/ean/gtin code generator

Be the first to know when new medium vulnerabilities affecting dmitry v. (ceo of "ukr solution") upc/ean/gtin code generator are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

Affected Versions

Dmitry V. (CEO of "UKR Solution") / UPC/EAN/GTIN Code Generator
0 โ‰ค 2.0.2

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
patchstack.com: https://patchstack.com/database/Wordpress/Plugin/upc-ean-barcode-generator/vulnerability/wordpress-upc-ean-gtin-code-generator-plugin-2-0-2-cross-site-request-forgery-csrf-vulnerability?_s_id=cve

Credits

Nabil Irawan | Patchstack Bug Bounty Program