What is CVE-2025-23471?

A high-severity Cross-Site Request Forgery (CSRF) vulnerability in the ECT Add to Cart Button plugin allows for stored Cross-Site Scripting (XSS). Organizations should prioritize remediation.

What is the severity of CVE-2025-23471?

CVE-2025-23471 has a severity rating of HIGH with a CVSS base score of 7.1.

CVE-2025-23471 | High Vulnerability in ECT Add to Cart Button

CVE-2025-23471 is a high-severity vulnerability classified as a Cross-Site Request Forgery (CSRF) in the ECT Add to Cart Button plugin. This vulnerability allows attackers to exploit the application, leading to stored Cross-Site Scripting (XSS) attacks. The CVSS score of 7.1 signifies a high level of risk associated with this issue, indicating that organizations should prioritize remediation efforts.

The vulnerability affects the ECT Add to Cart Button plugin versions up to and including 1.4. Given the nature of CSRF attacks, where an attacker can trick users into executing unwanted actions, the potential impact on affected organizations could be significant.

Currently, there is no confirmed public exploit available for this vulnerability, but the risk to organizations includes unauthorized actions performed on behalf of legitimate users. Organizations using this plugin should take immediate action to mitigate the risk.

Organizations should prioritize patching immediately to address this vulnerability and protect their systems from potential exploitation.

Vulnerability Details

The official description states that this vulnerability allows Cross-Site Request Forgery (CSRF) in the ECT Add to Cart Button, leading to stored XSS. The vulnerability is classified under CWE-352.

The CVSS score for this vulnerability is 7.1, indicating a high severity level. The vulnerability's characteristics are as follows:

Characteristic	Details
Attack Vector	Network
Attack Complexity	Low
Privileges Required	None
User Interaction	Required
Scope	Changed
Confidentiality Impact	Low
Integrity Impact	Low
Availability Impact	Low

Risk & Impact Analysis

The real-world risk associated with this vulnerability is significant, particularly in environments where the ECT Add to Cart Button plugin is utilized. The potential for stored XSS can lead to unauthorized actions being executed under the guise of legitimate users. This could result in data theft, account compromise, or further exploitation of the affected systems.

Given the CVSS score of 7.1, the urgency for organizations to address this issue is high. The attack vector being network-based increases the likelihood of exploitation, as attackers can target users remotely without needing physical access.

Organizations should assess their exposure to this vulnerability and take immediate steps to mitigate the risk, including applying necessary patches and implementing proper security measures.

Exploitation Status

Signal	Status
Known Exploit	No
Public PoC	No
Actively Exploited	No
Ransomware Use	No

Affected Versions

This vulnerability affects the ECT Add to Cart Button plugin versions from n/a through 1.4. Organizations should ensure they are not using any affected versions.

Mitigation & Remediation

To mitigate this vulnerability, organizations should immediately update the ECT Add to Cart Button plugin to the latest version. If a patch is not available, organizations should implement security measures such as CSRF tokens to validate requests and ensure proper user authentication.

Organizations should also consider conducting a thorough security assessment to identify and remediate any additional vulnerabilities that may exist within their systems.

For further information on security assessments, organizations can refer to the application security assessment.

Detection Guidance

To detect potential exploitation of this vulnerability, organizations should monitor logs for unusual activities related to the ECT Add to Cart Button plugin. Behavioral anomalies such as unexpected actions performed by users can also indicate an attack.

Additionally, organizations should keep an eye on network traffic for any suspicious requests that could indicate attempts to exploit this vulnerability.

AppSecure Threat Intelligence Insight

This vulnerability highlights the ongoing risk of CSRF attacks in web applications. Security teams must prioritize implementing robust security controls to mitigate such vulnerabilities. Regular security assessments and vulnerability management programs can help organizations identify and remediate weaknesses before they can be exploited.

Organizations should stay informed about emerging threats and vulnerabilities by following best practices in security monitoring and incident response. For insights on vulnerability management, refer to the vulnerability management program design.

Finally, organizations should consider engaging in penetration testing to validate their security posture and ensure that similar vulnerabilities are addressed proactively.

Disclaimer: This content was generated using AI. While we strive for accuracy, please verify critical information with official sources.

CVE ID	Title	Severity	Vulnerability Type	Published
CVE-2025-65418	CVE-2025-65418: High Vulnerability in docuFORM Managed Print Service Client	HIGH	Path Traversal	May 11, 2026
CVE-2025-65417	CVE-2025-65417: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	XSS	May 11, 2026
CVE-2025-65416	CVE-2025-65416: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Unrestricted File Upload	May 11, 2026
CVE-2025-65415	CVE-2025-65415: Medium Vulnerability in docuFORM Managed Print Service Client	MEDIUM	Session Fixation	May 11, 2026
CVE-2025-61314	CVE-2025-61314: High Vulnerability in GmbH Mecury Managed Print Services	HIGH	XSS	May 11, 2026

CVE-2025-23471: High Vulnerability in ECT Add to Cart Button