Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| HasThemes | WP Plugin Manager | unaffected |
|
No data.
| Vendor | Product | Confidence | Versions |
|---|---|---|---|
| Hasthemes | Wp Plugin Manager | — | — |
| Wordpress | Wordpress | — | — |
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Thu, 23 Apr 2026 15:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
cvssV3_1
|
Fri, 13 Feb 2026 16:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| CPEs | cpe:2.3:a:hasthemes:wp_plugin_manager:*:*:*:*:*:wordpress:*:* |
Tue, 20 Jan 2026 15:30:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Tue, 20 Jan 2026 14:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| References |
|
Thu, 13 Nov 2025 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Thu, 13 Nov 2025 16:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Hasthemes
Hasthemes wp Plugin Manager Wordpress Wordpress wordpress |
|
| Vendors & Products |
Hasthemes
Hasthemes wp Plugin Manager Wordpress Wordpress wordpress |
Thu, 13 Nov 2025 09:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Cross-Site Request Forgery (CSRF) vulnerability in HasThemes WP Plugin Manager wp-plugin-manager allows Cross Site Request Forgery.This issue affects WP Plugin Manager: from n/a through <= 1.4.7. | |
| Title | WordPress WP Plugin Manager plugin <= 1.4.7 - Cross Site Request Forgery (CSRF) vulnerability | |
| Weaknesses | CWE-352 | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-04-28T16:14:13.325Z
Reserved: 2025-10-29T03:08:27.751Z
Link: CVE-2025-64271
Vulnrichment
Updated: 2025-11-13T17:58:21.518Z
NVD
Status : Modified
Published: 2025-11-13T10:15:52.470
Modified: 2026-04-27T16:16:39.283
Link: CVE-2025-64271
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-04-29T20:15:19Z