Cross-Site Request Forgery Vulnerability in Tikweb Management Fast User Switching Plugin
CVE-2025-68583

Currently unrated

Key Information:

Vendor

WordPress
Status
Fast User Switching
Vendor
CVE Published:
24 December 2025

What is CVE-2025-68583?

A Cross-Site Request Forgery (CSRF) vulnerability exists in the Tikweb Management Fast User Switching plugin. This flaw allows an attacker to exploit the Fast User Switching functionality, potentially enabling unauthorized actions on behalf of the user. Affected versions include all releases from the initial version up to and including 1.4.10. Users are advised to update to the latest version to mitigate this risk.

Affected Version(s)

Fast User Switching <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Plugin/fast...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Nabil Irawan | Patchstack Bug Bounty Program
JSON
.
CVE-2025-68583 : Cross-Site Request Forgery Vulnerability in Tikweb Management Fast User Switching Plugin