Medium Level Vulnerability Not Addressed - [Simple Content Templates for Blog Posts & Pages] Review | WordPress.org

bellinghamfitz
(@bellinghamfitz)

1 day, 5 hours ago

A Cross-Site Request Forgery vulnerability CVE-2025062958 has been known for well over 6 months, and it seems likely that the software will not be updated to fix (the last update was six months ago).

There are others, and we’ll be migrating away ASAP. Stay away.

You must be logged in to reply to this review.

0 replies
1 participant
Last reply from: bellinghamfitz
Last activity: 1 day, 5 hours ago