WordPress is the WordPress Foundationโs suite of blogging platforms developed using the PHP language. WordPress NextScripts:Social Networks Auto-Poster plugin is vulnerable to cross-site request forgery in versions prior to 4.3.25. The vulnerability stems from the fact that there is no CSRF check feature, an attacker can use this vulnerability to log into the administrator account to delete arbitrary posts.
CPE | Name | Operator | Version |
---|---|---|---|
wordpress nextscripts๏ผ social networks auto-poster plugin | lt | 4.3.25 |