Vulnerability Details for Visit Counter CVE: CVE-2025-12452 CVSS: 6.1 (Medium) Publicly Published: November 3, 2025 Last Updated: November 4, 2025 Researcher: Mohammadamin Alidoost Description Vulnerability in leads to Cross-Site Request Forgery (CSRF) vulnerability, which can be exploited to perform a Stored Cross-Site Scripting (XSS) attack. Vulnerability Details for Visit Counter Software Type: Plugin Software Slug: visit-counter (view on wordpress.org) Patched? No Remediation: No known patch available. Review vulnerability details and apply mitigations based on risk tolerance. Uninstall the affected software and find a replacement if necessary. Affected Version:** 1.0