Cross-Site Request Forgery Vulnerability in Daman Jeet Real Time Validation for Gravity Forms
CVE-2025-48328
4.3MEDIUM
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 6 June 2025
What is CVE-2025-48328?
A vulnerability exists in Daman Jeet Real Time Validation for Gravity Forms that allows attackers to execute unauthorized commands on behalf of authenticated users without their consent. This CSRF vulnerability can be exploited to change settings and configurations within the plugin, potentially leading to further security compromises.
Affected Version(s)
Real Time Validation for Gravity Forms <= 1.7.0