Server-Side Request Forgery Vulnerability in Kodeshpa Simplified Plugin
CVE-2025-53241

5.5MEDIUM

Key Information:

Vendor: WordPress
Status: Simplified
Vendor: CVE Published:; 14 August 2025

What is CVE-2025-53241?

The Kodeshpa Simplified Plugin has a vulnerability that allows for Server-Side Request Forgery (SSRF). This issue can be exploited by attackers to send unauthorized requests from the server, potentially leading to exposure of sensitive data or internal services. The affected versions range from n/a through 1.0.9. It's crucial for users of this plugin to apply security measures and updates to prevent exploitation.

Affected Version(s)

Simplified <= 1.0.9

References

https://patchstack.com/database/wordpress/plugin/simplifi...

vdb-entry

CVSS V3.1

Score:

5.5

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

Low

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Changed

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Aug 14, 2025
Vulnerability Reserved
Jun 27, 2025

Credit

Trương Hữu Phúc (truonghuuphuc) (Patchstack Alliance)