The Trust Reviews plugin for WordPress, which aggregates reviews from major platforms such as Google, Tripadvisor, Yelp, and Airbnb, suffers from a Cross-Site Request Forgery (CSRF) vulnerability identified as CVE-2025-9899. This vulnerability exists in all versions up to and including 1.0 due to missing or improper nonce validation in the feed_save function. Nonces are security tokens used to verify that requests originate from legitimate users and not from malicious third parties. Without proper nonce checks, an attacker can craft a malicious web request that, when executed by an authenticated site administrator (e.g., by clicking a link), causes unauthorized creation or modification of review feed entries. This can lead to manipulation of displayed reviews, potentially misleading site visitors and damaging the credibility of the website. The vulnerability does not require the attacker to be authenticated but does require user interaction from an administrator. The CVSS 3.1 base score is 6.1, reflecting network attack vector, low attack complexity, no privileges required, user interaction required, and a scope change with low confidentiality and integrity impacts but no availability impact. No patches or fixes have been published yet, and no known exploits are reported in the wild. The vulnerability is classified under CWE-352, which pertains to CSRF attacks.

This vulnerability allows attackers to manipulate review content on affected WordPress sites by exploiting administrative users through social engineering. The unauthorized modification or creation of review feeds can undermine the trustworthiness and reputation of websites relying on the Trust Reviews plugin, potentially misleading customers and damaging business credibility. While the direct impact on confidentiality and integrity is low, the reputational damage and loss of customer trust can have significant business consequences. Since the attack requires user interaction from an administrator, the risk is somewhat mitigated but remains relevant for sites with multiple or less security-aware administrators. The vulnerability does not affect availability, so site functionality remains intact. Organizations relying on this plugin for displaying aggregated reviews are at risk of content tampering, which could affect marketing, customer perception, and compliance with advertising standards.

To mitigate this vulnerability, organizations should first monitor for updates or patches from the Trust Reviews plugin vendor and apply them promptly once available. In the absence of an official patch, administrators should implement additional nonce validation or CSRF protections at the application or web server level. Restrict administrative access to trusted users only and enforce multi-factor authentication to reduce the risk of social engineering. Educate administrators about the risks of clicking on unsolicited links or performing administrative actions from untrusted sources. Employ web application firewalls (WAFs) with rules to detect and block CSRF attack patterns targeting the feed_save function or related endpoints. Regularly audit and monitor review feed content for unauthorized changes. Consider temporarily disabling the plugin if the risk outweighs the operational need until a fix is available. Finally, maintain regular backups of site content to enable recovery from unauthorized modifications.