16Oca
CVE-2025-23708 | Dominic Fallows DF Draggable Plugin up to 1.13.2 on WordPress cross-site request forgery
A vulnerability was found in Dominic Fallows DF Draggable Plugin up to 1.13.2 on WordPress. It has been classified as problematic. Affected is an unknown function. The manipulation leads to cross-site request forgery. This vulnerability is traded as CVE-2025-23708. It is possible to launch the attack remotely. There is no exploit available.