VYPR

Rabbit Hole

by WordPress

CVEs (1)

  • CVE-2025-13366MedDec 12, 2025
    risk 0.28cvss 4.3epss 0.00

    The Rabbit Hole plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1. This is due to missing or incorrect nonce validation on the plugin's reset functionality. This makes it possible for unauthenticated attackers to reset the…