CSRF Vulnerability in Jablonczay Scroll Styler by Jablonczay
CVE-2025-23990

7.1HIGH

Key Information:

Vendor

WordPress
Status
Scroll Styler
Vendor
CVE Published:
31 January 2025

What is CVE-2025-23990?

A Cross-Site Request Forgery (CSRF) vulnerability exists in the Jablonczay Scroll Styler plugin, which could allow an attacker to perform unauthorized actions on behalf of authenticated users. This vulnerability affects versions of Scroll Styler from n/a to 1.1. Users and administrators are advised to apply security updates promptly to mitigate potential security risks.

Affected Version(s)

Scroll Styler <= 1.1

References

https://patchstack.com/database/wordpress/plugin/scroll-s...
vdb-entry

CVSS V3.1

Score:
7.1
Severity:
HIGH
Confidentiality:
Low
Integrity:
Low
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
Required
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

SOPROBRO (Patchstack Alliance)
.