CVE-2025-2940 – WordPress Easy Data Table Builder SSRF

June 27, 2025

CVE ID : CVE-2025-2940

Published : June 27, 2025, 9:15 a.m. | 1 hour, 54 minutes ago

Description : The Ninja Tables – Easy Data Table Builder plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5.0.18 via the args[url] parameter. This makes it possible for unauthenticated attackers to make web requests to arbitrary locations originating from the web application and can be used to query and modify information from internal services.

Severity: 7.2 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-5398 – Ninja Forms Stored Cross-Site Scripting Vulnerability

Next Article CVE-2024-12827 – WordPress DWT Directory & Listing Theme Privilege Escalation Vulnerability

tRPC vs GraphQL vs REST: Choosing the right API design for modern web applications

Jakarta EE 11 Platform launches with modernized Test Compatibility Kit framework

Can Good UX Protect Older Users From Digital Scams?

Warp 2.0 evolves terminal experience into an Agentic Development Environment

Microsoft Copilot secures a spot in classrooms as a “thought partner” — with Copilot Chat backed by OpenAI’s GPT-4o

OpenAI started as a “countervailing force” to Google — did Elon Musk and Sam Altman torpedo DeepMind’s plans to dictate AGI?

Gears of War: Reloaded preorders — where to buy and everything you need to know

OpenAI’s Sam Altman breaks silence on Microsoft feud with Satya Nadella — citing “points of tension” amid evolution plans

Are Semantic Layers Sexy Again? or The Rise and Fall and Rise of Semantic Layers

Are Semantic Layers Sexy Again? or The Rise and Fall and Rise of Semantic Layers

Salesforce Marketing Cloud Engagement vs. Oracle Eloqua

Exploring Lucidworks Fusion and Coveo Using Apache Solr

Microsoft Copilot secures a spot in classrooms as a “thought partner” — with Copilot Chat backed by OpenAI’s GPT-4o

Microsoft Copilot secures a spot in classrooms as a “thought partner” — with Copilot Chat backed by OpenAI’s GPT-4o

OpenAI started as a “countervailing force” to Google — did Elon Musk and Sam Altman torpedo DeepMind’s plans to dictate AGI?

Gears of War: Reloaded preorders — where to buy and everything you need to know

CVE-2025-2940 – WordPress Easy Data Table Builder SSRF

CVE-2025-4587 – WordPress A/B Testing Stored Cross-Site Scripting

CVE-2025-5306 – Pandora FMS Command Injection Vulnerability

Razer’s Minecraft collaboration has produced the best looking keyboard I’ve ever laid eyes on

CVE-2025-36034 – IBM InfoSphere DataStage Flow Designer Information Disclosure

CVE-2025-20152 – Cisco ISE RADIUS Message Processing Denial of Service Vulnerability

KimJongRAT Returns: New PE & PowerShell Variants Steal Crypto and Browser Data via CDNs

Human Biases – How Smart Teams Can Still Make Dumb Decisions

Critical Commvault Command Center Flaw Enables Attackers to Execute Code Remotely

CVE-2025-5707 – PHPGurukul Human Metapneumovirus Testing Management System SQL Injection

mynes – rolling minesweeper with islands and sonars

CVE-2025-2940 – WordPress Easy Data Table Builder SSRF

Related Posts