Cross-Site Request Forgery Vulnerability in Erima Zarinpal Donate by Seyyed-Amir
CVE-2025-27290
4.3MEDIUM
What is CVE-2025-27290?
A Cross-Site Request Forgery (CSRF) vulnerability exists in the Erima Zarinpal Donate plugin, which could allow unauthorized commands to be executed on behalf of an authenticated user. This issue can lead to potential misuse of donation functionalities and compromise user trust. It is crucial for users of affected versions to apply security updates or implement mitigating measures.
Affected Version(s)
Erima Zarinpal Donate <= 1.0