CVE Alert & Security Feed

Stats Digest Feeds

← Back to all CVEs

CVE-2025-68604

MEDIUM NVD

CVSS Score 5.4

Severity MEDIUM

Published May 07, 2026

Vendor unknown

Description

Cross-Site Request Forgery (CSRF) vulnerability in WPGraphQL allows Cross Site Request Forgery. This issue affects WPGraphQL: from n/a through 2.5.3.

References

https://patchstack.com/database/wordpress/plugin/wp-graphql/vulnerability/wordpress-wpgraphql-plugin-2-5-3-cross-site-request-forgery-csrf-vulnerability?_s_id=cve