CVE-2025-68885 – WordPress Custom Post Status plugin

CVE ID : CVE-2025-68885

Published : Dec. 31, 2025, 5:34 a.m. | 50 minutes ago

Description : Cross-Site Request Forgery (CSRF) vulnerability in Page Carbajal Custom Post Status allows Stored XSS.This issue affects Custom Post Status: from n/a through 1.1.0.

Severity: 7.1 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…