Title: Plugin Vulnerability
Last modified: October 8, 2025

---

# Plugin Vulnerability

 *  [staffj01](https://wordpress.org/support/users/staffj01/)
 * (@staffj01)
 * [6 months, 1 week ago](https://wordpress.org/support/topic/plugin-vulnerability-43/)
 * Sendle plugin (version 6.02) is flagged with a Cross-Site Request Forgery (CSRF)
   vulnerability:
 * [https://nvd.nist.gov/vuln/detail/CVE-2025-60139#:~:text=Description,from%20n/a%20through%206.02.](https://nvd.nist.gov/vuln/detail/CVE-2025-60139#:~:text=Description,from%20n/a%20through%206.02.)
 * When is the plugin going to be updated to mitigate the issue?
 * The page I need help with: _[[log in](https://login.wordpress.org/?redirect_to=https%3A%2F%2Fwordpress.org%2Fsupport%2Ftopic%2Fplugin-vulnerability-43%2F%3Foutput_format%3Dmd&locale=en_US)
   to see the link]_

The topic ‘Plugin Vulnerability’ is closed to new replies.

 * ![](https://ps.w.org/official-sendle-shipping-method/assets/icon-256x256.png?
   rev=2076889)
 * [Sendle Shipping Plugin](https://wordpress.org/plugins/official-sendle-shipping-method/)
 * [Frequently Asked Questions](https://wordpress.org/plugins/official-sendle-shipping-method/#faq)
 * [Support Threads](https://wordpress.org/support/plugin/official-sendle-shipping-method/)
 * [Active Topics](https://wordpress.org/support/plugin/official-sendle-shipping-method/active/)
 * [Unresolved Topics](https://wordpress.org/support/plugin/official-sendle-shipping-method/unresolved/)
 * [Reviews](https://wordpress.org/support/plugin/official-sendle-shipping-method/reviews/)

 * 0 replies
 * 1 participant
 * Last reply from: [staffj01](https://wordpress.org/support/users/staffj01/)
 * Last activity: [6 months, 1 week ago](https://wordpress.org/support/topic/plugin-vulnerability-43/)
 * Status: not resolved