Vulnerabilities > Bdthemes > Ultimate Store KIT > 2.3.6
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2025-05-01 | CVE-2025-2168 | Cross-Site Request Forgery (CSRF) vulnerability in Bdthemes Ultimate Store KIT The Ultimate Store Kit Elementor Addons, Woocommerce Builder, EDD Builder, Elementor Store Builder, Product Grid, Product Table, Woocommerce Slider plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.4.1. | 4.3 |