WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The WordPress plugin is an application plugin. WordPress Seamless Donations plugin versions prior to 5.1.9 are vulnerable to cross-site request forgery, which stems from the plugin’s failure to perform CSRF checks when updating its settings. An attacker could use this vulnerability to get the logged-in administrator to change the configuration through a CSRF attack.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress seamless donations plugin | lt | 5.1.9 |