{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2025-0807", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "state": "PUBLISHED", "assignerShortName": "Wordfence", "dateReserved": "2025-01-28T15:02:45.825Z", "datePublished": "2025-03-22T06:41:10.272Z", "dateUpdated": "2026-04-08T16:46:22.233Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:46:22.233Z"}, "affected": [{"vendor": "ashikcse", "product": "CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts", "versions": [{"version": "0", "status": "affected", "lessThanOrEqual": "4.2", "versionType": "semver"}], "defaultStatus": "unaffected"}], "descriptions": [{"lang": "en", "value": "The CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.2. This is due to missing or incorrect nonce validation on the cits_settings_tab() function. This makes it possible for unauthenticated attackers to update the plugin's settings via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}], "title": "CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts <= 4.2 - Cross-Site Request Forgery to Settings Update", "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/3772ddad-4960-48c8-904e-2457d12bd01c?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/cits-support-svg-webp-media-upload/trunk/includes/cits-custom-fonts.php"}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-352 Cross-Site Request Forgery (CSRF)", "cweId": "CWE-352", "type": "CWE"}]}], "metrics": [{"cvssV3_1": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", "baseScore": 4.3, "baseSeverity": "MEDIUM"}}], "credits": [{"lang": "en", "type": "finder", "value": "lucky_buddy"}], "timeline": [{"time": "2025-03-21T18:04:51.000Z", "lang": "en", "value": "Disclosed"}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2025-03-24T14:51:41.713531Z", "id": "CVE-2025-0807", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-03-24T15:13:36.626Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2025-0807", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "no"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2025-03-24T14:51:41.713531Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2025-03-24T14:51:42.935Z"}}], "cna": {"title": "CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts <= 4.2 - Cross-Site Request Forgery to Settings Update", "credits": [{"lang": "en", "type": "finder", "value": "lucky_buddy"}], "metrics": [{"cvssV3_1": {"version": "3.1", "baseScore": 4.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N"}}], "affected": [{"vendor": "ashikcse", "product": "CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts", "versions": [{"status": "affected", "version": "0", "versionType": "semver", "lessThanOrEqual": "4.2"}], "defaultStatus": "unaffected"}], "timeline": [{"lang": "en", "time": "2025-03-21T18:04:51.000Z", "value": "Disclosed"}], "references": [{"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/3772ddad-4960-48c8-904e-2457d12bd01c?source=cve"}, {"url": "https://plugins.trac.wordpress.org/browser/cits-support-svg-webp-media-upload/trunk/includes/cits-custom-fonts.php"}], "descriptions": [{"lang": "en", "value": "The CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.2. This is due to missing or incorrect nonce validation on the cits_settings_tab() function. This makes it possible for unauthenticated attackers to update the plugin's settings via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-352", "description": "CWE-352 Cross-Site Request Forgery (CSRF)"}]}], "providerMetadata": {"orgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "shortName": "Wordfence", "dateUpdated": "2026-04-08T16:46:22.233Z"}}}, "cveMetadata": {"cveId": "CVE-2025-0807", "state": "PUBLISHED", "dateUpdated": "2026-04-08T16:46:22.233Z", "dateReserved": "2025-01-28T15:02:45.825Z", "assignerOrgId": "b15e7b5b-3da4-40ae-a43c-f7aa60e62599", "datePublished": "2025-03-22T06:41:10.272Z", "assignerShortName": "Wordfence"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "The CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 4.2. This is due to missing or incorrect nonce validation on the cits_settings_tab() function. This makes it possible for unauthenticated attackers to update the plugin's settings via a forged request granted they can trick a site administrator into performing an action such as clicking on a link."}, {"lang": "es", "value": "El complemento CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts de WordPress es vulnerable a Cross-Site Request Forgery en todas las versiones hasta la 4.2 incluida. Esto se debe a la falta o a una validaci\u00f3n de nonce incorrecta en la funci\u00f3n cits_settings_tab(). Esto permite que atacantes no autenticados actualicen la configuraci\u00f3n del plugin mediante una solicitud falsificada, ya que pueden enga\u00f1ar al administrador del sitio para que realice una acci\u00f3n como hacer clic en un enlace."}], "id": "CVE-2025-0807", "lastModified": "2026-04-15T00:35:42.020", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 4.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "LOW", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "REQUIRED", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N", "version": "3.1"}, "exploitabilityScore": 2.8, "impactScore": 1.4, "source": "security@wordfence.com", "type": "Secondary"}]}, "published": "2025-03-22T07:15:24.260", "references": [{"source": "security@wordfence.com", "url": "https://plugins.trac.wordpress.org/browser/cits-support-svg-webp-media-upload/trunk/includes/cits-custom-fonts.php"}, {"source": "security@wordfence.com", "url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/3772ddad-4960-48c8-904e-2457d12bd01c?source=cve"}], "sourceIdentifier": "security@wordfence.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-352"}], "source": "security@wordfence.com", "type": "Secondary"}]}

{}

{"analysis": {"en": {"generated_at": "2026-04-28T19:06:38.735712+00:00", "value": {"mitigation_remediation": ["Upgrade the CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts plugin to the latest available version where the nonce check has been corrected.", "If the plugin cannot be upgraded immediately, remove or disable it from the site to eliminate the vulnerable functionality.", "Configure the web application firewall or use a plugin that enforces CSRF protection for the settings page, and consider applying a manual patch to the cits_settings_tab() function to ensure the nonce is verified before processing any changes."], "summary": {"action": "Immediate Patch", "impact": "Cross\u2011Site Request Forgery allowing unauthorized modification of plugin settings"}, "threat_synthesis": {"affected_systems": "All releases of the CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts plugin up to and including version 4.2 are vulnerable on any WordPress installation. Sites that rely on this plugin for media management and custom font handling must be assessed for the presence of these versions.", "description_and_impact": "The vulnerability is a Cross\u2011Site Request Forgery (CWE\u2011352) in the CITS Support svg, webp Media and TTF,OTF File Upload, Use Custom Fonts WordPress plugin. It arises from missing or incorrect nonce validation in the cits_settings_tab() function. As a result, an unauthenticated attacker who forges a request can cause the browser of a logged\u2011in site administrator to modify the plugin\u2019s configuration settings. The changes affect how media files and custom fonts are handled by the plugin, but the vulnerability does not expose confidential data or grant direct code execution.", "risk_and_exploitability": "The CVSS score of 4.3 indicates a moderate severity. An EPSS score of less than 1% suggests a low probability of exploitation at present, and the flaw is not listed in the CISA KEV catalog. Exploitation requires an unauthenticated attacker to trick a site administrator into following a malicious link or form submission, which is a social engineering vector. While the attack is limited to changing plugin settings, the change can affect site appearance and media handling, which could be undesirable for high\u2011traffic or high\u2011value sites."}}}}, "created": "2026-04-28T19:15:25.451650+00:00", "updated": "2026-04-28T19:15:25.451662+00:00", "vendors": []}