WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. WordPress plugin is an application plugin. WordPress Social Share Buttons plugin 2.2.2 and earlier versions are vulnerable to cross-site request forgery due to a lack of token authentication for cross-site request forgery. An attacker could use this vulnerability to spoof malicious requests to trick victims into clicking through to perform sensitive actions.