CVE-2025-60170: 
WordPress vulnerability analysis and mitigation

A Cross-Site Request Forgery (CSRF) vulnerability was discovered in the HTACCESS IP Blocker WordPress plugin, identified as CVE-2025-60170. The vulnerability affects all versions through 1.0 of the plugin developed by Taraprasad Swain. The issue was initially reported by Nguyen Xuan Chien on August 23, 2025, and was publicly disclosed on September 26, 2025 (Patchstack).

The vulnerability has been assigned a CVSS v3.1 Base Score of 7.1 (HIGH) with the following vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:L. The vulnerability is classified under CWE-352 (Cross-Site Request Forgery) and requires no authentication to exploit, though it does require user interaction (Patchstack).

The CSRF vulnerability could enable malicious actors to force higher privileged users to execute unwanted actions under their current authentication. The impact is rated as low to moderate, affecting confidentiality, integrity, and availability of the system (Patchstack).

As there is no official fix available and the software is considered abandoned, the recommended mitigation strategy is to remove and replace the HTACCESS IP Blocker plugin with an alternative solution. Deactivating the software alone does not remove the security threat unless a virtual patch is deployed (Patchstack).