CVE-2025-49391: CWE-352 Cross-Site Request Forgery (CSRF) in Fetch Designs Sign-up Sheets
Severity: mediumType: vulnerabilityCVE-2025-49391
Cross-Site Request Forgery (CSRF) vulnerability in Fetch Designs Sign-up Sheets allows Cross Site Request Forgery. This issue affects Sign-up Sheets: from n/a through 2.3.3.
CVE-2025-49391: CWE-352 Cross-Site Request Forgery (CSRF) in Fetch Designs Sign-up Sheets
Medium
Published: Wed Aug 20 2025 (08/20/2025, 08:03:53 UTC)
Source: CVE Database V5
Vendor/Project: Fetch Designs
Product: Sign-up Sheets
Description
Cross-Site Request Forgery (CSRF) vulnerability in Fetch Designs Sign-up Sheets allows Cross Site Request Forgery. This issue affects Sign-up Sheets: from n/a through 2.3.3.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- Patchstack
- Date Reserved
- 2025-06-04T15:43:46.346Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 68a584b4ad5a09ad0002e2ed
Added to database: 8/20/2025, 8:17:56 AM
Last updated: 8/20/2025, 8:17:56 AM
Views: 1
Related Threats
CVE-2025-55715: CWE-201 Insertion of Sensitive Information Into Sent Data in Themeisle Otter - Gutenberg Block
HighVulnerabilityWed Aug 20 2025
CVE-2025-54750: CWE-98 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') in FunnelKit Funnel Builder by FunnelKit
HighVulnerabilityWed Aug 20 2025
CVE-2025-54735: CWE-266 Incorrect Privilege Assignment in Emraan Cheema CubeWP Framework
HighVulnerabilityWed Aug 20 2025
CVE-2025-54726: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Miguel Useche JS Archive List
CriticalVulnerabilityWed Aug 20 2025
CVE-2025-54713: CWE-288 Authentication Bypass Using an Alternate Path or Channel in magepeopleteam Taxi Booking Manager for WooCommerce
CriticalVulnerabilityWed Aug 20 2025
Actions
Please log in to the Console to use AI analysis features.
External Links
Need enhanced features?
Contact root@offseq.com for Pro access with improved analysis and higher rate limits.