WordPress is the Wordpress Foundation’s set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on PHP and MySQL servers. WordPress CMP plugin version 4.0.19 prior to the authorization problem vulnerability, the vulnerability stems from the lack of authentication measures or insufficient authentication strength of the plugin, an attacker can use the vulnerability in the case of login to arbitrarily change the page layout.