Login Sign Up

CVE-2025-66061

4.3 MEDIUM
Authentication Bypass CSRF

📋 TL;DR

This CSRF vulnerability in Seriously Simple Podcasting WordPress plugin allows attackers to trick authenticated administrators into performing unintended actions. It affects all WordPress sites running Seriously Simple Podcasting version 3.13.0 or earlier.

💻 Affected Systems

Products:
  • Seriously Simple Podcasting WordPress Plugin
Versions: All versions up to and including 3.13.0
Operating Systems: Any OS running WordPress
Default Config Vulnerable: ⚠️ Yes
Notes: Requires WordPress admin to be logged in and visit a malicious page while authenticated.

📦 What is this software?

Seriously Simple Podcasting by Castos

View all CVEs affecting Seriously Simple Podcasting →

⚠️ Risk & Real-World Impact

🔴

Worst Case

An attacker could trick an admin into changing plugin settings, deleting episodes, or potentially performing other administrative actions within the plugin's scope.

🟠

Likely Case

Attackers could modify podcast settings, add malicious content, or disrupt podcast operations by exploiting admin sessions.

🟢

If Mitigated

With proper CSRF protections and admin awareness, impact is limited to plugin-specific actions only.

🌐 Internet-Facing: MEDIUM
🏢 Internal Only: LOW

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: LIKELY
Unauthenticated Exploit: ✅ No
Complexity: LOW

CSRF attacks are well-understood and easy to weaponize, though they require social engineering to lure authenticated users.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: Version 3.13.1 or later

Vendor Advisory: https://patchstack.com/database/Wordpress/Plugin/seriously-simple-podcasting/vulnerability/wordpress-seriously-simple-podcasting-plugin-3-13-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve

Restart Required: No

Instructions:

1. Log into WordPress admin panel
2. Navigate to Plugins > Installed Plugins
3. Find Seriously Simple Podcasting
4. Click 'Update Now' if available
5. Alternatively, download latest version from WordPress repository and manually update

🔧 Temporary Workarounds

CSRF Token Implementation

all

Add CSRF protection to plugin forms if custom modifications exist

Implement nonce verification in plugin forms: wp_nonce_field() and wp_verify_nonce()

🧯 If You Can't Patch

  • Implement web application firewall (WAF) rules to detect CSRF patterns
  • Educate administrators about CSRF risks and safe browsing practices

🔍 How to Verify

Check if Vulnerable:

Check WordPress admin > Plugins > Seriously Simple Podcasting version number

Check Version:

wp plugin list --name=seriously-simple-podcasting --field=version

Verify Fix Applied:

Verify plugin version is 3.13.1 or higher after update

📡 Detection & Monitoring

Log Indicators:

  • Multiple POST requests to /wp-admin/admin.php?page=ss_podcasting from same IP with different referrers
  • Unusual plugin configuration changes without corresponding admin activity

Network Indicators:

  • POST requests to plugin admin endpoints without proper referrer headers or nonce tokens

SIEM Query:

source="wordpress.log" AND "admin.php?page=ss_podcasting" AND status=200 AND referrer NOT CONTAINS "your-domain.com"

📊 Metadata

CVE ID: CVE-2025-66061
CVSS v3 Score: 4.3 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:N/A:N
CWE: CWE-352
EPSS Score: 0.02% exploit probability (4.3th percentile)
Published: November 21, 2025
Last Updated: January 20, 2026

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON

🔗 Related Vulnerabilities

If you're affected by CVE-2025-66061, you might also want to check these:

CVE-2025-23922 10.0

A Cross-Site Request Forgery (CSRF) vulnerability in the Harsh iSpring Embedder WordPress plugin all...

Same vulnerability type (CWE-352)
CVE-2020-23426 9.8

CVE-2020-23426 is a privilege escalation vulnerability in zzcms 201910 that allows attackers to gain...

Same vulnerability type (CWE-352)
CVE-2024-33449 9.8

This SSRF vulnerability in PDFMyURL allows attackers to make the service send requests to internal s...

Same vulnerability type (CWE-352)